PT-2021-21193 · Dell · Dbutildrv2.Sys

Published

2021-08-09

Updated

2026-04-13

CVE-2021-36276

CVSS v3.1

8.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Dell DBUtilDrv2.sys driver versions 2.5 and 2.6

Description The issue is related to an insufficient access control vulnerability in the Dell DBUtilDrv2.sys driver, which may lead to escalation of privileges, denial of service, or information disclosure. Local authenticated user access is required to exploit this issue.

Recommendations For versions 2.5 and 2.6, consider restricting access to the DBUtilDrv2.sys driver to minimize the risk of exploitation until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Improper Authorization

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-285

Related Identifiers

CVE-2021-36276

Affected Products

Dbutildrv2.Sys

PT-2021-21193 · Dell · Dbutildrv2.Sys

CVE-2021-36276

Weakness Enumeration

Related Identifiers

Affected Products

References · 8