CVE-2021-21791

Name of the Vulnerable Software and Affected Versions IOBit Advanced SystemCare Ultimate version 14.2.0.220

Description An information disclosure issue exists due to the way the driver handles Privileged I/O read requests. A specially crafted I/O request packet (IRP) can lead to privileged reads in the context of a driver, potentially resulting in sensitive information disclosure from the kernel. The IN instruction can read data from the given I/O device, potentially leaking sensitive device data to unprivileged users.

Recommendations For IOBit Advanced SystemCare Ultimate version 14.2.0.220, at the moment, there is no information about a newer version that contains a fix for this issue.