DriverHunter/Win-Driver-EXP

GitHub

github.com

Releases0

Stars47

This repo contains EXPs about Vulnerable Windows Driver

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2024-33223 ↗	May 22, 2024Wednesday, 22 May 2024, 16:15	8.8 HIGH	—
An issue in the component IOMap64.sys of ASUSTeK Computer Inc ASUS GPU TweakII v1.4.5.2 allows attackers to escalate privileges and execute arbitrary code via sending crafted IOCTL requests.
CVE-2024-33224 ↗	May 22, 2024Wednesday, 22 May 2024, 16:15	8.4 HIGH	—
An issue in the component rtkio64.sys of Realtek Semiconductor Corp Realtek lO Driver v1.008.0823.2017 allows attackers to escalate privileges and execute arbitrary code via sending crafted IOCTL requests.
CVE-2024-33225 ↗	May 22, 2024Wednesday, 22 May 2024, 16:15	7.8 HIGH	—
An issue in the component RTKVHD64.sys of Realtek Semiconductor Corp Realtek(r) High Definition Audio Function Driver v6.0.9549.1 allows attackers to escalate privileges and execute arbitrary code via sending crafted IOCTL requests.
CVE-2024-33226 ↗	May 22, 2024Wednesday, 22 May 2024, 16:15	9.9 CRITICAL	—
An issue in the component Access64.sys of Wistron Corporation TBT Force Power Control v1.0.0.0 allows attackers to escalate privileges and execute arbitrary code via sending crafted IOCTL requests.
CVE-2024-33227 ↗	May 22, 2024Wednesday, 22 May 2024, 16:15	8.8 HIGH	—
An issue in the component ddcdrv.sys of Nicomsoft WinI2C/DDC v3.7.4.0 allows attackers to escalate privileges and execute arbitrary code via sending crafted IOCTL requests.
CVE-2024-33228 ↗	May 22, 2024Wednesday, 22 May 2024, 16:15	8.4 HIGH	—
An issue in the component segwindrvx64.sys of Insyde Software Corp SEG Windows Driver v100.00.07.02 allows attackers to escalate privileges and execute arbitrary code via sending crafted IOCTL requests.
CVE-2024-33222 ↗	May 22, 2024Wednesday, 22 May 2024, 16:15	8.4 HIGH	—
An issue in the component ATSZIO64.sys of ASUSTeK Computer Inc ASUS ATSZIO Driver v0.2.1.7 allows attackers to escalate privileges and execute arbitrary code via sending crafted IOCTL requests.
CVE-2024-33218 ↗	May 22, 2024Wednesday, 22 May 2024, 15:15	7.8 HIGH	—
An issue in the component AsUpIO64.sys of ASUSTeK Computer Inc ASUS USB 3.0 Boost Storage Driver 5.30.20.0 allows attackers to escalate privileges and execute arbitrary code via sending crafted IOCTL requests.
CVE-2024-33219 ↗	May 22, 2024Wednesday, 22 May 2024, 15:15	7.8 HIGH	—
An issue in the component AsIO64.sys of ASUSTeK Computer Inc ASUS SABERTOOTH X99 Driver v1.0.1.0 allows attackers to escalate privileges and execute arbitrary code via sending crafted IOCTL requests.
CVE-2024-33220 ↗	May 22, 2024Wednesday, 22 May 2024, 15:15	8.8 HIGH	—
An issue in the component AslO3_64.sys of ASUSTeK Computer Inc AISuite3 v3.03.36 3.03.36 allows attackers to escalate privileges and execute arbitrary code via sending crafted IOCTL requests.
CVE-2024-33221 ↗	May 22, 2024Wednesday, 22 May 2024, 15:15	7.8 HIGH	—
An issue in the component AsusBSItf.sys of ASUSTeK Computer Inc ASUS BIOS Flash Driver v3.2.12.0 allows attackers to escalate privileges and execute arbitrary code via sending crafted IOCTL requests.
CVE-2024-30804 ↗	Apr 26, 2024Friday, 26 April 2024, 22:15	9.8 CRITICAL	—
An issue discovered in the DeviceIoControl component in ASUS Fan_Xpert before v.10013 allows an attacker to execute arbitrary code via crafted IOCTL requests.