3 matches found
CVE-2021-21792
An information disclosure vulnerability exists in the the way IOBit Advanced SystemCare Ultimate 14.2.0.220 driver handles Privileged I/O read requests. A specially crafted I/O request packet IRP can lead to privileged reads in the context of a driver which can result in sensitive information...
CVE-2021-21792
The CVE-2021-21792 issue affects IOBit Advanced SystemCare Ultimate 14.2.0.220, where the driver mishandles Privileged I/O read requests via IRP_MJ_DEVICE_CONTROL, allowing a local attacker to perform privileged IN reads from the kernel. TALOS-2021-1255 documents a local exploit path where an att...
IOBit Advanced SystemCare Ultimate Privileged I/O Read vulnerabilities
Summary An information disclosure vulnerability exists in the the way IOBit Advanced SystemCare Ultimate 14.2.0.220 driver handles Privileged I/O read requests. A specially crafted I/O request packet IRP can lead to privileged reads in the context of a driver which can result in sensitive...