Unrated severityNVD Advisory· Published Aug 5, 2021· Updated Aug 3, 2024
CVE-2021-21791
CVE-2021-21791
Description
An information disclosure vulnerability exists in the the way IOBit Advanced SystemCare Ultimate 14.2.0.220 driver handles Privileged I/O read requests. A specially crafted I/O request packet (IRP) can lead to privileged reads in the context of a driver which can result in sensitive information disclosure from the kernel. The IN instruction can read two bytes from the given I/O device, potentially leaking sensitive device data to unprivileged users.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- IOBit/Advanced SystemCare Ultimatedescription
- Range: = 14.2.0.220
Patches
Vulnerability mechanics
References
1- talosintelligence.com/vulnerability_reports/TALOS-2021-1255mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.