2 matches found
CVE-2021-21787
The CVE-2021-21787 issue affects IOBit Advanced SystemCare Ultimate 14.2.0.220, involving the driver’s handling of privileged I/O write requests. In particular, IOCTL 0x9c40a0d8 reads the target device port from the input and uses OUT to write the value, enabling potential local privilege escalat...
IOBit Advanced SystemCare ultimate privileged I/O write vulnerabilities
Summary A privilege escalation vulnerability exists in the way IOBit Advanced SystemCare Ultimate 14.2.0.220 driver handles Privileged I/O write requests. A specially crafted I/O request packet IRP can lead to privileged writes which can result in elevation of privileges of the current user. A...