CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-44968

A Use after Free vulnerability exists in IOBit Advanced SystemCare 15 pro via requests sent in sequential order using the IOCTL driver codes, which could let a malicious user execute arbitrary code or a Denial of Service (system crash). IOCTL list: iobit_ioctl = [0x8001e01c, 0x8001e020, 0x8001e024, 0x8001e040,0x8001e044, 0x8001e048, 0x8001e04c, 0x8001e000, 0x8001e004, 0x8001e008, 0x8001e00c, 0x8001e010, 0x8001e014, 0x8001e018]

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 24.3%

CVSS Severity

CVSS v3 Score 7.8

CVSS v2 Score 7.2

References

https://github.com/Quadron-Research-Lab/Kernel_Driver_bugs/tree/main/iobit_advenced_system_care
https://github.com/Quadron-Research-Lab/Kernel_Driver_bugs/tree/main/iobit_advenced_system_care

Products affected by CVE-2021-44968

Iobit » Advanced Systemcare » Version: 15

cpe:2.3:a:iobit:advanced_systemcare:15

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-44968

Products

Pricing

Contact Us