This post details the story and technical details of the non-secure Hypervisor-Protected Code Integrity (HVCI) configuration vulnerability disclosed and fixed with the January 9th update on Windows. This vulnerability, CVE-2024-21305, allowed arbitrary kernel-mode code execution, effectively bypassing HVCI within the root partition.
9d64188a47060dad96a12b2b5fc06e5f3f52c1141722943d26696fa195cc355b
DAEMON Tools IOCTL suffers from a denial of service vulnerability.
3656f4f0fd08182ef82d4fbaef525c86eececf16dd72199c074c4dfc7b5f6bfb