CVE-2024-36054

Name of the Vulnerable Software and Affected Versions Marvin Test HW.exe versions prior to 5.0.5.0

Description The issue allows unprivileged user-mode processes to arbitrarily read kernel memory, and consequently gain all privileges, via specific IOCTL commands. The affected IOCTL commands are 0x9c4064b8, which uses MmMapIoSpace, and 0x9c406490, which uses ZwMapViewOfSection.

Recommendations For versions prior to 5.0.5.0, update to version 5.0.5.0 or later to resolve the issue. As a temporary workaround, consider restricting access to the IOCTL commands 0x9c4064b8 and 0x9c406490 to minimize the risk of exploitation.