Skip to main content

Mondoo

Vulnerability Management
Technology
Services

Solutions

Financial Services
Manufacturing
Healthcare

Resources

Blog
Vulnerability Database
Documentation
GitHub

Company

About
Careers
Partners
Contact

Legal

Privacy
Terms
Imprint

© 2026 Mondoo, Inc.

Log in Get Assessment

CVE-2024-0788 | Mondoo Vulnerability Intelligence

Vulnerability IntelligenceCVE-2024-0788

CVE-2024-0788

MEDIUM6.6

SUPERAntiSpyware Pro X v10.0.1260 - Kernel-level API parameters manipulation

Published Jan 29, 2024

Modified 12 months ago

Details

SUPERAntiSpyware Pro X v10.0.1260 is vulnerable to kernel-level API parameters manipulation and Denial of Service vulnerabilities by triggering the 0x9C402140 IOCTL code of the saskutil64.sys driver.

References

https://fluidattacks.com/advisories/brubeck/

https://www.cve.org/CVERecord?id=CVE-2024-0788

https://www.superantispyware.com/professional-x-edition.html

CVSS Analysis

CVSS v3.1

6.6

Exploitability

Attack Vector

LocalAV:L

Attack Complexity

LowAC:L

Privileges Required

LowPR:L

User Interaction

NoneUI:N

Scope

Scope

UnchangedS:U

Impact

Confidentiality

LowC:L

Integrity

LowI:L

Availability

HighA:H

6.6/CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H

Weakness Type (CWE)

Other

Ecosystems

Timeline

PublishedJan 29, 2024

ModifiedMay 20, 2025