CVE-2021-36923

Name of the Vulnerable Software and Affected Versions Realtek RtsUpx USB Utility Driver for Camera/Hub/Audio versions 1.14.0.0 and earlier

Description The issue allows local low-privileged users to achieve unauthorized access to USB device privileged IN and OUT instructions, leading to Escalation of Privileges, Denial of Service, Code Execution, and Information Disclosure. This is achieved via a crafted Device IO Control packet to a device.

Recommendations For versions 1.14.0.0 and earlier, at the moment, there is no information about a newer version that contains a fix for this vulnerability.