Lucene search

MitreCVE-2023-41444

HistorySep 28, 2023 - 3:15 a.m.

CVE-2023-41444

2023-09-2803:15:11

mitre

web.nvd.nist.gov

cve-2023-41444

binalyze

irec.sys

local attacker

arbitrary code

privilege escalation

nvd

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS

Percentile

10.4%

JSON

An issue in Binalyze IREC.sys v.3.11.0 and before allows a local attacker to execute arbitrary code and escalate privileges via the fun_1400084d0 function in IREC.sys driver.

Affected configurations

Nvd

Node

microsoftwindowsMatch-

AND

binalyzeirecRange≤3.11.0

VendorProductVersionCPE
microsoftwindows-cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
binalyzeirec*cpe:2.3:a:binalyze:irec:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
microsoft	windows	-	cpe:2.3:o:microsoft:windows:-:::::::*
binalyze	irec	*	cpe:2.3:a:binalyze:irec::::::::

References

blog.dru1d.ninja/windows-driver-exploit-development-irec-sys-a5eb45093945

gist.github.com/dru1d-foofus/1af21179f253879f101c3a8d4f718bf0

github.com/magicsword-io/LOLDrivers/blob/main/yaml/d74fdf19-b4b0-4ec2-9c29-4213b064138b.yml

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS

Percentile

10.4%

JSON

Related for CVE-2023-41444