Filtered by vendor Micron
Subscribe
Filtered by product Ballistix Memory Overview Display Utility
Subscribe
Total
1 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2021-41285 | 1 Micron | 1 Ballistix Memory Overview Display Utility | 2024-11-21 | 7.2 HIGH | 7.8 HIGH |
Ballistix MOD Utility through 2.0.2.5 is vulnerable to privilege escalation in the MODAPI.sys driver component. The vulnerability is triggered by sending a specific IOCTL request that allows low-privileged users to directly interact with physical memory via the MmMapIoSpace function call (mapping physical memory into a virtual address space). Attackers could exploit this issue to achieve local privilege escalation to NT AUTHORITY\SYSTEM. |