CVE-2024-55412

Name of the Vulnerable Software and Affected Versions SUNIX Serial Driver x64 version 10.1.0.0

Description A vulnerability exists in the driver snxpsamd.sys, allowing low-privileged users to read and write to arbitrary I/O ports via specially crafted IOCTL requests. This can be exploited for privilege escalation, code execution under high privileges, and information disclosure. The signed drivers can also be used to bypass the Microsoft driver-signing policy to deploy malicious code.

Recommendations For SUNIX Serial Driver x64 version 10.1.0.0, consider disabling the snxpsamd.sys driver until a patch is available to prevent exploitation. Restrict access to the vulnerable driver to minimize the risk of privilege escalation and code execution under high privileges. Avoid using specially crafted IOCTL requests in the affected driver until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.