Security Advisory

CVE-2023-35841

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-05-14 14:56:14

Last updated 2025-07-28 20:49:33

Assigner Phoenix

State PUBLISHED

Description

Exposed IOCTL with Insufficient Access Control in Phoenix WinFlash Driver on Windows allows Privilege Escalation which allows for modification of system firmware.This issue affects WinFlash Driver: before 4.5.0.0.

← Browse all CVEs View on cve.org ↗