← Back

Winflash

winflash

Vendor: Phoenixtech • 1 CVE

CVEs (1)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2023-35841
1Phoenixtech
1Winflash
Sep 25, 2025
May 14, 2024
N/A· v4
7.8 HIGH· v3
N/A· v2
Exposed IOCTL with Insufficient Access Control in Phoenix WinFlash Driver on Windows allows Privilege Escalation which allows for modification of system firmware.This issue affects WinFlash Driver: before 4.5.0.0.