CVE-2024-33224

HIGH

Realtek lO Driver <v1.008.0823.2017 - Privilege Escalation

Title source: llm

Description

An issue in the component rtkio64.sys of Realtek Semiconductor Corp Realtek lO Driver v1.008.0823.2017 allows attackers to escalate privileges and execute arbitrary code via sending crafted IOCTL requests.

References (1)

Core 1

Core References

Various Sources

https://github.com/DriverHunter/Win-Driver-EXP/tree/main/CVE-2024-33224

View Writeup ZIP pw:eip

Scores

CVSS v3 8.4

EPSS 0.0018

EPSS Percentile 7.6%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-269

Status published

Published May 22, 2024

Tracked Since Feb 18, 2026