CVE-2020-10234
 
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
1Exploited in Wild
-Decision
Descriptions
The AscRegistryFilter.sys kernel driver in IObit Advanced SystemCare 13.2 allows an unprivileged user to send an IOCTL to the device driver. If the user provides a NULL entry for the dwIoControlCode parameter, a kernel panic (aka BSOD) follows. The IOCTL codes can be found in the dispatch function: 0x8001E000, 0x8001E004, 0x8001E008, 0x8001E00C, 0x8001E010, 0x8001E014, 0x8001E020, 0x8001E024, 0x8001E040, 0x8001E044, and 0x8001E048. \DosDevices\AscRegistryFilter and \Device\AscRegistryFilter are affected.
El controlador del kernel AscRegistryFilter.sys en IObit Advanced SystemCare versión 13.2, permite a un usuario no privilegiado enviar un IOCTL hacia el controlador del dispositivo. Si el usuario proporciona una entrada NULL para el parámetro dwIoControlCode, sigue un pánico del kernel (también se conoce como BSOD). Los códigos IOCTL que pueden ser encontrados en la función dispatch: 0x8001E000, 0x8001E004, 0x8001E008, 0x8001E00C, 0x8001E010, 0x8001E014, 0x8001E020, 0x8001E024, 0x8001E040, 0x8001E044, and 0x8001E048. \DosDevices\AscRegistryFilter y \Device\AscRegistryFilter están afectadas
CVSS Scores
SSVC
- Decision:-
Timeline
- 2020-03-09 CVE Reserved
- 2021-02-05 CVE Published
- 2024-08-04 CVE Updated
- 2024-08-04 First Exploit
- 2024-12-17 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
CAPEC
References (3)
URL | Tag | Source |
---|---|---|
https://github.com/FULLSHADE/Kernel-exploits | Third Party Advisory |
URL | Date | SRC |
---|---|---|
https://github.com/FULLSHADE/Kernel-exploits/tree/master/AscRegistryFilter.sys | 2024-08-04 |
URL | Date | SRC |
---|
URL | Date | SRC |
---|---|---|
https://www.iobit.com/en/advancedsystemcarefree.php | 2021-02-08 |
Affected Vendors, Products, and Versions
Vendor | Product | Version | Other | Status | ||||||
---|---|---|---|---|---|---|---|---|---|---|
Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
Iobit Search vendor "Iobit" | Advanced Systemcare Search vendor "Iobit" for product "Advanced Systemcare" | 13.2 Search vendor "Iobit" for product "Advanced Systemcare" and version "13.2" | windows |
Affected
|