CVE-2021-36925

Name of the Vulnerable Software and Affected Versions Realtek RtsUpx USB Utility Driver for Camera/Hub/Audio versions 1.14.0.0 and earlier

Description The issue allows local low-privileged users to achieve arbitrary read or write operations from/to physical memory, leading to Escalation of Privileges, Denial of Service, Code Execution, and Information Disclosure. This is achieved via a crafted Device IO Control packet to a device.

Recommendations For versions 1.14.0.0 and earlier, at the moment, there is no information about a newer version that contains a fix for this vulnerability.