Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
VB-Audio Voicemeeter & Matrix Drivers DoS via MmMapLockedPagesSpecifyCache
Vulnerability Description
VB-Audio Voicemeeter, Voicemeeter Banana, and Voicemeeter Potato (versions ending in 1.1.1.9, 2.1.1.9, and 3.1.1.9 and earlier, respectively), as well as VB-Audio Matrix and Matrix Coconut (versions ending in 1.0.2.2 and 2.0.2.2 and earlier, respectively), contain a vulnerability in their virtual audio drivers (vbvoicemeetervaio64*.sys, vbmatrixvaio64*.sys, vbaudio_vmauxvaio*.sys, vbaudio_vmvaio*.sys, and vbaudio_vmvaio3*.sys). The drivers map non-paged pool memory into user space via MmMapLockedPagesSpecifyCache using UserMode access without proper exception handling. If the mapping fails, such as when a process has exhausted available virtual address space, MmMapLockedPagesSpecifyCache raises an exception that is not caught, causing a kernel crash (BSoD), typically SYSTEM_SERVICE_EXCEPTION with STATUS_NO_MEMORY. This flaw allows a local unprivileged user to trigger a denial-of-service on affected Windows systems.
CVSS Information
N/A
Vulnerability Type
对异常条件的处理不恰当
Vulnerability Title
VB-Audio Voicemeeter和VB-Audio Matrix 安全漏洞
Vulnerability Description
VB-Audio Voicemeeter和VB-Audio Matrix都是法国VB-Audio公司的产品。VB-Audio Voicemeeter是一个虚拟音频调音台软件。VB-Audio Matrix是一个实时音频路由软件。 VB-Audio Voicemeeter和VB-Audio Matrix存在安全漏洞,该漏洞源于虚拟音频驱动程序将非分页池内存映射到用户空间时缺少适当的异常处理,可能导致内核崩溃和拒绝服务。
CVSS Information
N/A
Vulnerability Type
N/A