CVE-2025-5555 – Nixdorf Wincor PORT IO Driver IOCTL wnport.sys sub_11100 stack-based overflow

CVE ID : CVE-2025-5555

Published : Oct. 18, 2025, 8:15 a.m. | 25 minutes ago

Description : A vulnerability has been found in Nixdorf Wincor PORT IO Driver up to 1.0.0.1. This affects the function sub_11100 in the library wnport.sys of the component IOCTL Handler. Such manipulation leads to stack-based buffer overflow. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used. Upgrading to version 3.0.0.1 is able to mitigate this issue. Upgrading the affected component is recommended. The vendor was contacted beforehand and was able to provide a patch very early.

Severity: 8.5 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…