← Back

Ballistix Memory Overview Display Utility

ballistix_memory_overview_display_utility

Vendor: Micron • 1 CVE

CVEs (1)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2021-41285
1Micron
1Ballistix Memory Overview Display Utility
Nov 21, 2024
Oct 4, 2021
N/A· v4
7.8 HIGH· v3
7.2 HIGH· v2
Ballistix MOD Utility through 2.0.2.5 is vulnerable to privilege escalation in the MODAPI.sys driver component. The vulnerability is triggered by sending a specific IOCTL request that allows low-privileged users to direc...Show more
Ballistix MOD Utility through 2.0.2.5 is vulnerable to privilege escalation in the MODAPI.sys driver component. The vulnerability is triggered by sending a specific IOCTL request that allows low-privileged users to directly interact with physical memory via the MmMapIoSpace function call (mapping physical memory into a virtual address space). Attackers could exploit this issue to achieve local privilege escalation to NT AUTHORITY\SYSTEM.Show less