Exploit for Exposed IOCTL with Insufficient Access Control in Dell Dbutil

CVE-2021-21551 Proof of concept exploit for CVE-2021-21551, vu...

CVE-2024-26507

An issue in FinalWire AIRDA Extreme, AIDA64 Engineer, AIDA64 Business, AIDA64 Network Audit v.7.00.6700 and before allows a local attacker to escalate privileges via the DeviceIoControl call associated with MmMapIoSpace, IoAllocateMdl, MmBuildMdlForNonPagedPool, or MmMapLockedPages components...

CVE-2024-26507

The CVE-2024-26507 issue affects FinalWire AIRDA Extreme, AIDA64 Engineer, AIDA64 Business, and AIDA64 Network Audit v7.00.6700 and earlier. The vulnerability enables local privilege escalation via a DeviceIoControl call linked to MmMapIoSpace, IoAllocateMdl, MmBuildMdlForNonPagedPool, or MmMapLo...

CVE-2024-36054

Hw64.sys in Marvin Test HW.exe before 5.0.5.0 allows unprivileged user-mode processes to arbitrarily read kernel memory and consequently gain all privileges via IOCTL 0x9c4064b8 via MmMapIoSpace and IOCTL 0x9c406490 via ZwMapViewOfSection...

CVE-2024-36055

Hw64.sys in Marvin Test HW.exe before 5.0.5.0 allows unprivileged user-mode processes to arbitrarily map physical memory with read/write access via the MmMapIoSpace API IOCTL 0x9c40a4f8, 0x9c40a4e8, 0x9c40a4c0, 0x9c40a4c4, 0x9c40a4ec, and seven others, leading to a denial of service BSOD...

CVE-2024-36055

The CVE-2024-36055 issue affects Marvin Test HW.exe (Marvin Test Solutions) prior to version 5.0.5.0. The vulnerability allows unprivileged user‑mode processes to arbitrarily map physical memory with read/write access via MmMapIoSpace, triggered by IOCTLs such as 0x9c40a4f8, 0x9c40a4e8, 0x9c40a4c...

CVE-2020-24088

An issue was discovered in MmMapIoSpace routine in Foxconn Live Update Utility 2.1.6.26, allows local attackers to escalate privileges...

CVE-2020-24088

An issue was discovered in MmMapIoSpace routine in Foxconn Live Update Utility 2.1.6.26, allows local attackers to escalate privileges...

Design/Logic Flaw

An issue was discovered in MmMapIoSpace routine in Foxconn Live Update Utility 2.1.6.26, allows local attackers to escalate privileges...

Foxconn FOX LiveUpdate Utility Security Vulnerability

Foxconn FOX LiveUpdate Utility is a series of motherboard utilities from Foxconn China. A security vulnerability exists in Foxconn FOX LiveUpdate Utility version 2.1.6.26, which stems from a security issue discovered in the MmMapIoSpace routine that allows a local attacker to elevate privileges...

PT-2023-11660 · Foxconn · Foxconn Live Update Utility

Name of the Vulnerable Software and Affected Versions: Foxconn Live Update Utility version 2.1.6.26 Description: An issue was discovered in the MmMapIoSpace routine, allowing local attackers to escalate privileges. Recommendations: For Foxconn Live Update Utility version 2.1.6.26, at the moment,...

CVE-2021-41285

Ballistix MOD Utility through 2.0.2.5 is vulnerable to privilege escalation in the MODAPI.sys driver component. The vulnerability is triggered by sending a specific IOCTL request that allows low-privileged users to directly interact with physical memory via the MmMapIoSpace function call mapping...

Design/Logic Flaw

Ballistix MOD Utility through 2.0.2.5 is vulnerable to privilege escalation in the MODAPI.sys driver component. The vulnerability is triggered by sending a specific IOCTL request that allows low-privileged users to directly interact with physical memory via the MmMapIoSpace function call mapping...

CVE-2021-41285

Ballistix MOD Utility through 2.0.2.5 is vulnerable to privilege escalation in the MODAPI.sys driver component. The vulnerability is triggered by sending a specific IOCTL request that allows low-privileged users to directly interact with physical memory via the MmMapIoSpace function call mapping...

CVE-2021-29337

MODAPI.sys in MSI Dragon Center 2.0.104.0 allows low-privileged users to access kernel memory and potentially escalate privileges via a crafted IOCTL 0x9c406104 call. This IOCTL provides the MmMapIoSpace feature for mapping physical memory...

Exploit for CVE-2021-29337

CVE-2021-29337 - Privilege Escalation in MODAPI.sys MSI Drago...

NZXT CAM WinRing0x64 Driver IRP 0x9c406104 information disclosure vulnerability

Summary An information disclosure vulnerability exists in the WinRing0x64 Driver IRP 0x9c406104 functionality of NZXT CAM 4.8.0. A specially crafted I/O request packet IRP can cause the disclosure of sensitive information. An attacker can send a malicious IRP to trigger this vulnerability. Tested...

CVE-2020-12138

AMD ATI atillk64.sys 5.11.9.0 allows low-privileged users to interact directly with physical memory by calling one of several driver routines that map physical memory into the virtual address space of the calling process. This could enable low-privileged users to achieve NT AUTHORITY\SYSTEM...

Design/Logic Flaw

AMD ATI atillk64.sys 5.11.9.0 allows low-privileged users to interact directly with physical memory by calling one of several driver routines that map physical memory into the virtual address space of the calling process. This could enable low-privileged users to achieve NT AUTHORITY\SYSTEM...