CVE-2021-42993

December 9, 2021

FlexiHub For Windows is affected by Integer Overflow. IOCTL Handler 0x22001B in the FlexiHub For Windows above 2.0.4340 below 5.3.14268 allow local attackers to execute arbitrary code in kernel mode or cause a denial of service (memory corruption and OS crash) via specially crafted I/O Request Packet.

Summary:

FlexiHub For Windows is affected by Integer Overflow. IOCTL Handler 0x22001B in the FlexiHub For Windows above 2.0.4340 below 5.3.14268 allow local attackers to execute arbitrary code in kernel mode or cause a denial of service (memory corruption and OS crash) via specially crafted I/O Request Packet.

Reference Links(if available):

  • https://www.sentinelone.com/labs/usb-over-ethernet-multiple-privilege-escalation-vulnerabilities-in-aws-and-other-major-cloud-services/

  • CVSS Score (if available)

    v2: / HIGH

    v3: /

    Links to Exploits(if available)

  • Tags: , , , ,

    You may have missed

    Sliver C2

    Sliver C2 Detected – 143[.]110[.]237[.]179:31337

    May 4, 2024
    CISA Logo

    CISA: CISA Adds One Known Exploited Vulnerability to Catalog

    May 4, 2024
    CISA Logo

    CISA: Cisco Releases Security Updates Addressing ArcaneDoor, Vulnerabilities in Cisco Firewall Platforms

    May 4, 2024
    CISA Logo

    CISA: CISA Adds Three Known Exploited Vulnerabilities to Catalog

    May 4, 2024
    CISA Logo

    CISA: CISA Releases Three Industrial Control Systems Advisories

    May 4, 2024