CVE-2024-0788 MEDIUM

CVE-2024-0788: SUPERAntiSpyware Pro X v10.0.1260 - Kernel-level API parameters manipulation

Vendor Superantispyware
Product SUPERAntiSpyware Pro X
Weakness CWE-96
Published January 29, 2024
Last update May 20, 2025

CVSS base score

6.6/10
Attack vector Local
Attack complexity Low
Privileges required Low
User interaction None
Confidentiality Low
Integrity Low

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H

What the vulnerability does

01Description

SUPERAntiSpyware Pro X v10.0.1260 is vulnerable to kernel-level API parameters manipulation and Denial of Service vulnerabilities by triggering the 0x9C402140 IOCTL code of the saskutil64.sys driver.

Key dates

02Disclosure timeline

January 29, 2024 CVE published
May 20, 2025 Record updated