CVE-2021-44852

Name of the Vulnerable Software and Affected Versions Biostar RACING GT Evo version 2.1.1905.1700

Description An issue was discovered in BS RCIO64.sys. A low-integrity process can open the driver's device object and issue IOCTLs to read or write to arbitrary physical memory locations, or call an arbitrary address, leading to execution of arbitrary code. This issue is associated with specific IOCTL codes.

Recommendations For Biostar RACING GT Evo version 2.1.1905.1700, consider restricting access to the BS RCIO64.sys driver to prevent low-integrity processes from opening its device object and issuing malicious IOCTLs. As a temporary workaround, consider disabling the driver until a patch is available. At the moment, there is no information about a newer version that contains a fix for this issue.