CVE-2024-22103
published 2024-07-02CVE-2024-22103: Out-of-Bounds Write vulnerability in Jungo WinDriver before 12.6.0 allows local attackers to cause a Windows blue screen error and Denial of Service (DoS).
PriorityP419medium5.5CVSS 3.1
AVLACLPRLUINSUCNINAH
EPSS
0.23%
13.3th percentile
Out-of-Bounds Write vulnerability in Jungo WinDriver before 12.6.0 allows local attackers to cause a Windows blue screen error and Denial of Service (DoS).
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| jungo | windriver | < 12.6.0 | 12.6.0 |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-f848-67vp-29cf: Out-of-Bounds Write vulnerability in Jungo WinDriver before 12
ghsa_unreviewed·2024-07-02
CVE-2024-22103 [MEDIUM] CWE-787 GHSA-f848-67vp-29cf: Out-of-Bounds Write vulnerability in Jungo WinDriver before 12
Out-of-Bounds Write vulnerability in Jungo WinDriver before 12.6.0 allows local attackers to cause a Windows blue screen error and Denial of Service (DoS).
CISA ICS
Mitsubishi Electric Multiple FA Engineering Software Products (Update E)
cisa_ics·2026-01-15·CVSS 7.8
[HIGH] Mitsubishi Electric Multiple FA Engineering Software Products (Update E)
ICS Advisory
##
Mitsubishi Electric Multiple FA Engineering Software Products (Update E)
Last RevisedJanuary 15, 2026
Alert CodeICSA-24-135-04
Related topics:
Industrial Control System Vulnerabilities, Industrial Control Systems
View CSAF
## Summary
Successful exploitation of these vulnerabilities may allow a local attacker to cause a Windows blue screen error that results in a denial-of-service condition. Additionally, an attacker may gain Windows system privileges and execute arbitrary commands.
The following versions of Mitsubishi Electric Multiple FA Engineering Software Products are affected:
- CPU Module Logging Configuration Tool (CVE-2023-51776, CVE-2023-51777, CVE-2023-51778, CVE-2024-22102, CVE-2024-22103, CVE-2024-22104, CVE-2024-22105, CVE-2024-
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
https://jungo.com/windriver/versions/https://www.cisa.gov/news-events/ics-advisories/icsa-24-135-04https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2024-001_en.pdfhttps://jungo.com/windriver/versions/https://www.cisa.gov/news-events/ics-advisories/icsa-24-135-04https://www.mitsubishielectric.com/en/psirt/vulnerability/pdf/2024-001_en.pdf
2024-07-02
Published