CVE-2020-10234 Information

Jun 07, 2022 cve

Description

The AscRegistryFilter.sys kernel driver in IObit Advanced SystemCare 13.2 allows an unprivileged user to send an IOCTL to the device driver. If the user provides a NULL entry for the dwIoControlCode parameter a kernel panic (aka BSOD) follows. The IOCTL codes can be found in the dispatch function: 0x8001E000 0x8001E004 0x8001E008 0x8001E00C 0x8001E010 0x8001E014 0x8001E020 0x8001E024 0x8001E040 0x8001E044 and 0x8001E048. \DosDevices\AscRegistryFilter and \Device\AscRegistryFilter are affected.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Reference

https://github.com/FULLSHADE/Kernel-exploits/tree/master/AscRegistryFilter.sys https://www.iobit.com/en/advancedsystemcarefree.php https://github.com/FULLSHADE/Kernel-exploits

Attack Complexity

LOW

Privileges Required

LOW

User Interaction Required

LOW

Scope

NONE

Confidentiality Impact

UNCHANGED

Integrity Impact

NONE

Availability Impact

NONE

Base Score

HIGH

Base Severity

6.5

Share on: