cbcvebase.
CVE-2024-1305
published 2024-07-08

CVE-2024-1305: tap-windows6 driver version 9.26 and earlier does not properly check the size data of incomming write operations which an attacker can use to overflow memory…

PriorityP266critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
15.38%
96.4th percentile
tap-windows6 driver version 9.26 and earlier does not properly check the size data of incomming write operations which an attacker can use to overflow memory buffers, resulting in a bug check and potentially arbitrary code execution in kernel space

Affected

3 ranges
VendorProductVersion rangeFixed in
openvpnopenvpn-gui
openvpntap-windows6<= 9.26.0
openvpntap-windows6

Detection & IOCsextracted from sources · hover to see the quote

  • Target tap-windows6 driver version 9.26 and earlier for vulnerable driver identification (BYOVD scenario)
  • CVE-2024-1305 is chained with CVE-2024-27459, CVE-2024-24974, and CVE-2024-27903 in a BYOVD attack chain leading to RCE and LPE against OpenVPN endpoints
  • ·Vulnerability is in the kernel-space tap-windows6 driver; exploitation results in a bug check (BSOD) or arbitrary code execution in kernel space, making it suitable for BYOVD (Bring Your Own Vulnerable Driver) attacks
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.