CVE-2021-43002

Name of the Vulnerable Software and Affected Versions Amzetta zPortal DVM Tools versions prior to 3.3.148.149

Description The issue affects the IOCTL Handler 0x22001B, allowing local attackers to execute arbitrary code in kernel mode or cause a denial of service due to memory corruption and OS crash via specially crafted I/O Request Packets.

Recommendations For Amzetta zPortal DVM Tools versions prior to 3.3.148.149, update to version 3.3.148.149 or later to resolve the issue. As a temporary workaround, consider restricting access to the IOCTL Handler 0x22001B to minimize the risk of exploitation.