Privilege Escalation in Ballistix MOD Utility through 2.0.2.5 via MODAPI.sys Driver Component

Privilege Escalation in Ballistix MOD Utility through 2.0.2.5 via MODAPI.sys Driver Component

CVE-2021-41285 · HIGH Severity

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Ballistix MOD Utility through 2.0.2.5 is vulnerable to privilege escalation in the MODAPI.sys driver component. The vulnerability is triggered by sending a specific IOCTL request that allows low-privileged users to directly interact with physical memory via the MmMapIoSpace function call (mapping physical memory into a virtual address space). Attackers could exploit this issue to achieve local privilege escalation to NT AUTHORITY\SYSTEM.

Learn more about our Cis Benchmark Audit For Apple Ios.