CyberAlerts is shutting down on June 30th, 2025. Thank you for your support!
CVE-2024-26314: Improper privilege management in Jungo WinDriver 6.0.0 through 16.1.0 allows local attackers to escalate privileges and execute arbitrary code.
7.8
CVSS
Description
Improper privilege management in Jungo WinDriver 6.0.0 through 16.1.0 allows local attackers to escalate privileges and execute arbitrary code.
Classification
CVE ID: CVE-2024-26314
CVSS Base Severity: HIGH
CVSS Base Score: 7.8
Affected Products
Vendor: n/a
Product: n/a
Exploit Prediction Scoring System (EPSS)
EPSS Score: 0.04% (probability of being exploited)
EPSS Percentile: 12.54% (scored less or equal to compared to others)
EPSS Date: 2025-04-18 (when was this score calculated)
Stakeholder-Specific Vulnerability Categorization (SSVC)
SSVC Exploitation: none
SSVC Technical Impact: total
SSVC Automatable: false
References
https://nvd.nist.gov/vuln/detail/CVE-2024-26314https://jungo.com/windriver/versions/
https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2024-001_en.pdf
https://www.cisa.gov/news-events/ics-advisories/icsa-24-135-04