PT-2024-3922 · Microsoft · Windows Mobile Broadband Driver+1

B1An

Published

2024-05-14

Updated

2024-05-23

CVE-2024-29997

CVSS v2.0

7.2

High

Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions: Windows Mobile Broadband Driver (affected versions not specified)

Description: The issue is related to an integer overflow in the Windows Mobile Broadband driver of Windows operating systems. Exploitation of this issue may allow an attacker to execute arbitrary code by connecting a malicious USB device. The vulnerability can be exploited by remote attackers to execute arbitrary code and affect the system.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

RCE

Integer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-190

Related Identifiers

BDU:2024-04332

CVE-2024-29997

Affected Products

Windows

Windows Mobile Broadband Driver

PT-2024-3922 · Microsoft · Windows Mobile Broadband Driver+1

CVE-2024-29997

Weakness Enumeration

Related Identifiers

Affected Products

References · 8