CVE-2021-42994

Severity CVSS v4.0:
Pending analysis
Type:
CWE-120 Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
Publication date:
07/12/2021
Last modified:
08/12/2021

Description

Donglify is affected by Buffer Overflow. IOCTL Handler 0x22001B in the Donglify above 1.0.12309 below 1.7.14110 allow local attackers to execute arbitrary code in kernel mode or cause a denial of service (memory corruption and OS crash) via specially crafted I/O Request Packet.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:donglify:donglify:*:*:*:*:*:*:*:* 1.0.12309 (excluding) 1.7.14110 (excluding)