
A security vulnerability has been identified in the Generic IO & Memory Access Driver (QIOMEM.SYS) provided for certain older Dynabook models (approximately Windows 7 / 8 / 8.1 / 10 era systems, released around 10 years ago).
Affected Component:
QIOMEM.SYS (Password Utility driver component)
Function:
Enables configuration of BIOS passwords (User / Supervisor Password) from within Windows via the Password Utility.
Vulnerability Overview:
The driver may be susceptible to misuse when a malicious program is executed locally on the system.
Potential Impact:
If an attacker already has the ability to execute malicious code on the system (or gains local access privileges), the driver could be abused to perform unauthorized operations.
However, this issue is not remotely exploitable over the network and the overall exploitation risk is considered low under normal conditions.
The recommended action is to uninstall (remove) the QIOMEM.SYS driver if it is installed on affected systems.
Driver Details:
The QIOMEM.SYS driver was originally distributed as part of the Dynabook Password Utility package.
It provides functionality to configure:
within the Windows operating system.
This functionality is typically available on systems shipped with Windows 7 through Windows 10.
Solution:
Customers using affected systems are requested to remove the QIOMEM.SYS driver using the provided automated tool.
Automated Removal Tool
Download the official Dynabook removal tool and execute it. Follow the on screen prompts to complete the uninstallation.
A detailed step by step instruction can be found in the attached user guide.
Important Notes:
After removing the driver, the Windows based Password Utility will no longer function.
BIOS passwords can still be configured directly via the BIOS Setup Utility.
For further assistance, please refer to the Dynabook ASP locator:
https://support.dynabook.com/asplocator
DISCLAIMER
Dynabook provides this information "as is" without warranty of any kind, either express or implied, including, but not limited to, the implied warranties of merchantability or fitness for a particular purpose. Dynabook shall not be responsible for the topicality, correctness, completeness or quality of the information or software provided. Dynabook is not liable for any damage caused by the use of any information or software provided, including information that is incomplete or incorrect. Any trademarks used herein belong to their respective owners.
Copyright Dynabook Europe GmbH. All rights reserved.
