CVE-2024-55413

Name of the Vulnerable Software and Affected Versions SUNIX Parallel Driver x64 version 10.1.0.0

Description A vulnerability exists in the driver snxppamd.sys, allowing low-privileged users to read and write arbitrary I/O ports via specially crafted IOCTL requests. This can be exploited for privilege escalation, code execution under high privileges, and information disclosure. The signed drivers can also be used to bypass the Microsoft driver-signing policy to deploy malicious code.

Recommendations For SUNIX Parallel Driver x64 version 10.1.0.0, consider disabling the snxppamd.sys driver until a patch is available to prevent exploitation. Restrict access to the vulnerable IOCTL requests to minimize the risk of privilege escalation and code execution. Avoid using the vulnerable driver for sensitive operations until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.