CVE-2021-31184

MEDIUM

Microsoft Windows - Information Disclosure via Infrared Data Association (IrDA)

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2021-31184. PoCs published by waleedassar.

AI-analyzed exploit summary This repository contains a functional proof-of-concept exploit for CVE-2021-31184, which targets a vulnerability in the Microsoft IRCOMM driver. The exploit iterates through COM ports, attempting to disclose symbolic link information via ZwOpenSymbolicLinkObject and ZwQuerySymbolicLinkObject, potentially leading to information leakage.

Description

Microsoft Windows Infrared Data Association (IrDA) Information Disclosure Vulnerability

Exploits (1)

nomisec WORKING POC 3 stars

by waleedassar · poc

https://github.com/waleedassar/CVE-2021-31184

View Code ZIP pw:eip

This repository contains a functional proof-of-concept exploit for CVE-2021-31184, which targets a vulnerability in the Microsoft IRCOMM driver. The exploit iterates through COM ports, attempting to disclose symbolic link information via ZwOpenSymbolicLinkObject and ZwQuerySymbolicLinkObject, potentially leading to information leakage.

Classification

Working Poc 95%

Attack Type

Info Leak

Complexity

Moderate

Reliability

Reliable

Target: Microsoft Windows IRCOMM driver

No auth needed

Prerequisites: Infrared device listed under 'Infrared Devices' in Windows Device Manager

MITRE ATT&CK

T1082 - System Information Discovery

devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (1)

Core 1

Core References

Patch, Vendor Advisory x_refsource_misc

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-31184

Scores

CVSS v3 5.5

EPSS 0.0156

EPSS Percentile 72.1%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Details

Status published

Products (19)

microsoft/windows_10

microsoft/windows_10 20h2

microsoft/windows_10 1607

microsoft/windows_10 1803

microsoft/windows_10 1809

microsoft/windows_10 1909

microsoft/windows_10 2004

microsoft/windows_7

microsoft/windows_8.1

microsoft/windows_rt_8.1

... and 9 more

Published May 11, 2021

Tracked Since Feb 18, 2026