PT-2024-24197 · Marvintest Solutions · Marvintest Solutions Hardware Access Driver

Alex Oudenaarden

Published

2024-05-21

Updated

2024-08-26

CVE-2024-31756

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions MarvinTest Solutions Hardware Access Driver versions 5.0.3.0 and before

Description An issue in the Hardware Access Driver allows a local attacker to escalate privileges via the Hw65.sys component.

Recommendations For versions 5.0.3.0 and before, update to version 5.0.4.0 to resolve the issue. As a temporary workaround, consider restricting access to the Hw65.sys component until the update is applied.

Fix

Improper Privilege Management

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-269

Related Identifiers

CVE-2024-31756

Affected Products

Marvintest Solutions Hardware Access Driver

CVE-2024-31756

Weakness Enumeration

Related Identifiers

Affected Products

References · 5