VYPR
Medium severity6.1NVD Advisory· Published Mar 25, 2024· Updated Apr 15, 2026

CVE-2024-29216

CVE-2024-29216

Description

Exposed IOCTL with insufficient access control issue exists in cg6kwin2k.sys prior to 2.1.7.0. By sending a specific IOCTL request, a user without the administrator privilege may perform I/O to arbitrary hardware port or physical address, resulting in erasing or altering the firmware.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.