Buffer Overrun Vulnerability in Yenkee Hornet Gaming Mouse Driver
CVE-2021-47789

6.8MEDIUM

Key Information:

Vendor

Yenkee

Status
Yenkee Hornet Gaming Mouse
Vendor
CVE Published:
15 January 2026

Badges

๐Ÿ‘พ Exploit Exists๐ŸŸก Public PoC

What is CVE-2021-47789?

The Yenkee Hornet Gaming Mouse driver, GM312Fltr.sys, is susceptible to a buffer overrun vulnerability that can lead to a system crash. This vulnerability enables attackers to exploit the driver's functionality by sending oversized input (up to 2000 bytes) via the DeviceIoControl API. When the oversized buffer is processed, the system can experience a denial of service due to a kernel-level crash, affecting the stability and usability of the system. Users are advised to take preventive measures and keep their drivers updated.

Affected Version(s)

Yenkee Hornet Gaming Mouse all version

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2021-47789 - Proof of Concept

CVE-2021-47789 - Proof of Concept

References

https://www.exploit-db.com/exploits/50311
exploit
https://www.yenkee.eu/
product
https://github.com/Quadron-Research-Lab/Kernel_Driver_bug...
technical-descriptionexploit

CVSS V4

Score:
6.8
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Attack Required:
None
Privileges Required:
Undefined
User Interaction:
None

Timeline

  • ๐ŸŸก

    Public PoC available

  • ๐Ÿ‘พ

    Exploit known to exist

  • Vulnerability published

  • Vulnerability Reserved

Credit

Quadron Research Lab
JSON
.