CVE-2021-42987

Name of the Vulnerable Software and Affected Versions Eltima USB Network Gate versions 7.0.1370 through 9.2.2420

Description The issue is related to an Integer Overflow in the IOCTL Handler 0x22001B, allowing local attackers to execute arbitrary code in kernel mode or cause a denial of service, resulting in memory corruption and OS crash, via specially crafted I/O Request Packet.

Recommendations For Eltima USB Network Gate versions 7.0.1370 through 9.2.2420, consider disabling the IOCTL Handler 0x22001B as a temporary workaround to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.