CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Micron: >> Ballistix Memory Overview Display Utility Security Vulnerabilities

CVE-2021-41285

Ballistix MOD Utility through 2.0.2.5 is vulnerable to privilege escalation in the MODAPI.sys driver component. The vulnerability is triggered by sending a specific IOCTL request that allows low-privileged users to directly interact with physical memory via the MmMapIoSpace function call (mapping physical memory into a virtual address space). Attackers could exploit this issue to achieve local privilege escalation to NT AUTHORITY\SYSTEM.

CVSS Score

7.8

EPSS Score

0.001

Published

2021-10-04

Page 1

Vulnerabilities

Vulnerable Software

Micron: >> Ballistix Memory Overview Display Utility Security Vulnerabilities

Products

Pricing

Contact Us