CVE-2024-0788

CVSS 3.1 Score 5.5 of 10 (medium)

Details

Published Jan 29, 2024
Updated: Feb 8, 2024
CWE ID 20

Summary

CVE-2024-0788 is a newly disclosed vulnerability affecting SUPERAntiSpyware Pro X version 10.0.1260. This issue permits attackers to manipulate kernel-level API parameters, potentially leading to Denial of Service attacks. The vulnerability is triggered by exploiting the 0x9C402140 IOCTL code of the saskutil64.sys driver. Successful exploitation could result in system instability or crashes, disrupting normal operations. Users are advised to update their antivirus software to the latest version to mitigate this risk.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share