Description
The SDDisk2k.sys driver of WinMagic SecureDoc v8.5 and earlier allows local users to read or write to physical disc sectors via a \\.\SecureDocDevice handle. Exploiting this vulnerability results in privileged code execution.
Exploits (1)
References (2)
Core 2
Core References
Vendor Advisory x_refsource_confirm
https://www.winmagic.com/support/release-notes/securedoc-v8-5-sr2/
Vendor Advisory x_refsource_confirm
https://www.winmagic.com/support/release-notes/securedoc-v8-5-sr2-hf1
Scores
CVSS v3
7.8
EPSS
0.0109
EPSS Percentile
78.2%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Details
Status
published
Products (1)
winmagic/securedoc
< 8.5
Published
Jun 22, 2020
Tracked Since
Feb 18, 2026