Nixdorf Wincor PORT IO Driver IOCTL wnport.sys sub_11100 stack-based overflow

8.5 / 10

HIGH

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P

Description

A vulnerability has been found in Nixdorf Wincor PORT IO Driver up to 1.0.0.1. This affects the function sub_11100 in the library wnport.sys of the component IOCTL Handler. Such manipulation leads to stack-based buffer overflow. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used. Upgrading to version 3.0.0.1 is able to mitigate this issue. Upgrading the affected component is recommended. The vendor was contacted beforehand and was able to provide a patch very early.

Basic Information

ID CVE-2025-5555

Source VulDB

Published Oct 18, 2025 at 08:02

Affected Product

Vendor Nixdorf Wincor

Product PORT IO Driver

Version 1.0.0.0

Affected Versions Nixdorf Wincor PORT IO Driver 1.0.0.0
Nixdorf Wincor PORT IO Driver 1.0.0.1

CWE Classification

CWE-121 CWE-119

References

{
    "lastseen": "",
    "description": "A vulnerability has been found in Nixdorf Wincor PORT IO Driver up to 1.0.0.1. This affects the function sub_11100 in the library wnport.sys of the component IOCTL Handler. Such manipulation leads to stack-based buffer overflow. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used. Upgrading to version 3.0.0.1 is able to mitigate this issue. Upgrading the affected component is recommended. The vendor was contacted beforehand and was able to provide a patch very early.",
    "published": "2025-10-18T08:02:06.128Z",
    "modified": "2025-10-18T08:02:06.128Z",
    "type": "cve",
    "title": "Nixdorf Wincor PORT IO Driver IOCTL wnport.sys sub_11100 stack-based overflow",
    "source": "VulDB",
    "references": "https://vuldb.com/?id.329013\nhttps://vuldb.com/?ctiid.329013\nhttps://vuldb.com/?submit.604823\nhttps://b.iakb.org/2025/06/26/Wincor-Nixdorf-PORT-IO-Driver-Buffer-Overflow/\nhttps://download.dieboldnixdorf.com/",
    "id": "CVE-2025-5555",
    "bulletinFamily": "",
    "cwe": [
        "CWE-121",
        "CWE-119"
    ],
    "cvelist": null,
    "sourceData": "Nixdorf Wincor PORT IO Driver 1.0.0.0\nNixdorf Wincor PORT IO Driver 1.0.0.1",
    "sourceHref": "",
    "cvss": {
        "score": 8.5,
        "severity": "HIGH",
        "vector": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "PORT IO Driver",
    "version": "1.0.0.0",
    "vendor": "Nixdorf Wincor",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

Nixdorf Wincor PORT IO Driver IOCTL wnport.sys sub_11100 stack-based overflow_CVE-2025-5555