CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-42683

A Buffer Overflow vulnerability exists in Accops HyWorks Windows Client prior to v 3.2.8.200. The IOCTL Handler 0x22001B allows local attackers to execute arbitrary code in kernel mode or cause a denial of service (memory corruption and OS crash) via specially crafted I/O Request Packet.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 23.4%

CVSS Severity

CVSS v3 Score 8.8

CVSS v2 Score 7.2

References

https://www.sentinelone.com/labs/usb-over-ethernet-multiple-privilege-escalation-vulnerabilities-in-aws-and-other-major-cloud-services/
https://www.sentinelone.com/labs/usb-over-ethernet-multiple-privilege-escalation-vulnerabilities-in-aws-and-other-major-cloud-services/

Products affected by CVE-2021-42683

Accops » Hyworks Windows Client » Version: Any

cpe:2.3:a:accops:hyworks_windows_client:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-42683

Products

Pricing

Contact Us