CVE-2024-0788

Summary

SUPERAntiSpyware Pro X v10.0.1260 is vulnerable to kernel-level API parameters manipulation and Denial of Service vulnerabilities by triggering the 0x9C402140 IOCTL code of the saskutil64.sys driver.

Affected Software

VendorProductVersion RangeStatus
SUPERAntiSpywareSUPERAntiSpyware Pro X10.0.1260affected

Weaknesses

  • CWE-96: CWE-96: Improper Neutralization of Directives in Statically Saved Code ('Static Code Injection')

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: poc
    • Automatable: no
    • Technical Impact: partial

References