CVE-2021-42682

HIGH

Accops HyWorks DVM Tools < 3.3.1.105 - Integer Overflow via IOCTL Handler 0x22001B

Title source: llm

Description

An Integer Overflow vulnerability exists in Accops HyWorks DVM Tools prior to v3.3.1.105 .The IOCTL Handler 0x22001B allows local attackers to execute arbitrary code in kernel mode or cause a denial of service (memory corruption and OS crash) via specially crafted I/O Request Packet.

References (1)

Core 1

Core References

Exploit, Technical Description, Third Party Advisory x_refsource_misc

https://www.sentinelone.com/labs/usb-over-ethernet-multiple-privilege-escalation-vulnerabilities-in-aws-and-other-major-cloud-services/

Scores

CVSS v3 8.8

EPSS 0.0047

EPSS Percentile 36.9%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Details

CWE

CWE-190

Status published

Products (1)

accops/hyworks_dvm_tools < 3.3.1.105

Published Dec 07, 2021

Tracked Since Feb 18, 2026