← Retour aux CVEs

CVE-2020-9014

MEDIUM

5.5

Description

In Epson iProjection v2.30, the driver file (EMP_NSAU.sys) allows local users to cause a denial of service (BSOD) via crafted input to the virtual audio device driver with IOCTL 0x9C402402, 0x9C402406, or 0x9C40240A. \Device\EMPNSAUIO and \DosDevices\EMPNSAU are similarly affected.

Details CVE

Score CVSS v3.15.5

SeveriteMEDIUM

Vecteur CVSSCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Vecteur d'attaqueLOCAL

ComplexiteLOW

Privileges requisLOW

Interaction utilisateurNONE

Publie2/5/2021

Derniere modification11/21/2024

Sourcenvd

Observations honeypot0

Produits affectes

epson:iprojection

References

https://epson.com/Support/wa00935(cve@mitre.org)

https://epson.com/wireless-projector-app(cve@mitre.org)

https://github.com/FULLSHADE/Kernel-exploits(cve@mitre.org)

https://github.com/FULLSHADE/Kernel-exploits/tree/master/EMP_NSAU.sys(cve@mitre.org)

https://epson.com/Support/wa00935(af854a3a-2127-422b-91ae-364da2661108)

https://epson.com/wireless-projector-app(af854a3a-2127-422b-91ae-364da2661108)

https://github.com/FULLSHADE/Kernel-exploits(af854a3a-2127-422b-91ae-364da2661108)

https://github.com/FULLSHADE/Kernel-exploits/tree/master/EMP_NSAU.sys(af854a3a-2127-422b-91ae-364da2661108)

Correlations IOC

Aucune correlation enregistree

This product uses data from the NVD API but is not endorsed or certified by the NVD.