ГлавнаяУязвимости → CVE-2021-47789
7.5высокая

CVE-2021-47789

Описание

Yenkee Hornet Gaming Mouse driver GM312Fltr.sys contains a buffer overrun vulnerability that allows attackers to crash the system by sending oversized input. Attackers can exploit the driver by sending a 2000-byte buffer through DeviceIoControl to trigger a kernel-level system crash.

Затрагиваемое ПО
Yenkee Yms 3029 firmwareYenkee Yms 3029
CVSS
Балл7.5 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Источники
https://github.com/Quadron-Research-Lab/Kernel_Driver_bugs/tree/main/GM312Fltrhttps://www.exploit-db.com/exploits/50311https://www.vulncheck.com/advisories/yenkee-hornet-gaming-mouse-gmfltrsys-denial-of-service-pochttps://www.yenkee.eu/https://www.exploit-db.com/exploits/50311