High severity8.4NVD Advisory· Published Jul 22, 2024· Updated Apr 15, 2026

CVE-2024-34329

Description

Insecure permissions in Entrust Datacard XPS Card Printer Driver 8.5 and earlier without the dxp1-patch-E24-004 patch allows unauthenticated attackers to execute arbitrary code as SYSTEM via a crafted DLL payload.

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

github.com/pamoutaf/CVE-2024-34329/blob/main/README.mdnvd
www.entrust.com/ja/contact/services/downloads/driversnvd
www.entrust.com/sites/default/files/documentation/productsupport/entrust-security-bulletin-e24-004.pdfnvd
www.entrust.com/support/instant-id-card-issuance-systems/ds3-direct-to-card-printer-supportnvd

News mentions

No linked articles in our index yet.

cvss	0.546
epss	0.006
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000