CVE-2015-2291

KEV · Ransomware EPSS 4.86% · P90 Updated Feb 21, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2015-2291

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

(1) IQVW32.sys before 1.3.1.0 and (2) IQVW64.sys before 1.3.1.0 in the Intel Ethernet diagnostics driver for Windows allows local users to cause a denial of service or possibly execute arbitrary code with kernel privileges via a crafted (a) 0x80862013, (b) 0x8086200B, (c) 0x8086200F, or (d) 0x80862007 IOCTL call.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Intel Ethernet diagnostics driver for Windows 缓冲区错误漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Intel Ethernet diagnostics driver for Windows是美国英特尔（Intel）公司的一款基于Windows的以太网诊断驱动程序。基于Windows平台的Intel Ethernet diagnostics驱动程序的IQVW32.sys 1.3.1.0之前的版本和IQVW64.sys 1.3.1.0之前的版本存在安全漏洞。本地攻击者可借助特制的0x80862013、0x8086200B、0x8086200F或0x80862007 IOCTL调用利用该漏洞造成拒绝服务或

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Shenlong Deep Dive — AI Deep Analysis

10-question deep dive: root cause, exploitation, mitigation, urgency. Read summary free, full version requires login.

Read summary Full analysis (login)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2015-2291

#	POC Description	Source Link	Shenlong Link
1	PoC exploit for CVE-2015-2291	https://github.com/Tare05/Intel-CVE-2015-2291	POC Details
2	(1) IQVW32.sys before 1.3.1.0 and (2) IQVW64.sys before 1.3.1.0 in the Intel Ethernet diagnostics driver for Windows allows local users to cause a denial of service or possibly execute arbitrary code with kernel privileges via a crafted (a) 0x80862013, (b) 0x8086200B, (c) 0x8086200F, or (d) 0x80862007 IOCTL call.	https://github.com/gmh5225/CVE-2015-2291	POC Details
3	Overview of a application that I reversed using the CVE-2015-2291 exploit from the Intel Ethernet Diagnostics Driver (iQVW32.sys) for memory manipulation used in hwid spoofing.	https://github.com/paysonism/CVE-2015-2291-Spoofer-Analysis	POC Details
4	CVE-2015-2291 Local Privilege Escalation PoC	https://github.com/ethanedits/iqvw64e-privilege-escalation	POC Details

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2015-2291

请登录查看更多情报信息。

http://packetstormsecurity.com/files/130854/Intel-Network-Adapter-Diagnostic-Driver-IOCTL-DoS.htmlx_refsource_MISC
https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00051&languageid=en-frx_refsource_CONFIRM
https://www.exploit-db.com/exploits/36392/exploitx_refsource_EXPLOIT-DB
http://www.securityfocus.com/bid/79623vdb-entryx_refsource_BID
https://nvd.nist.gov/vuln/detail/CVE-2015-2291

Same Patch Batch · n/a · 2017-08-09 · 38 CVEs total

CVE-2015-6816		ganglia-web 安全漏洞
CVE-2015-1820		Ruby REST client 安全漏洞
CVE-2015-2310		Sandstorm Cap'n Proto 数字错误漏洞
CVE-2015-2311		Sandstorm Cap'n Proto 数字错误漏洞
CVE-2015-2312		Sandstorm Cap'n Proto 安全漏洞
CVE-2015-2313		Sandstorm Cap'n Proto 安全漏洞
CVE-2015-2674		Restkit 安全漏洞
CVE-2015-2687		OpenStack Compute (nova) Icehouse、Juno和Havana 信息泄露漏洞
CVE-2015-3277		mod_nss模块安全漏洞
CVE-2015-6498		Alcatel-Lucent Home Device Manager 安全漏洞
CVE-2015-0786		Novell ZENworks Configuration Management 缓冲区错误漏洞
CVE-2015-7894		Samsung Galaxy S6 LibQjpeg 安全漏洞
CVE-2017-11368		MIT krb5 输入验证错误漏洞
CVE-2015-3405		NTP 安全特征问题漏洞
CVE-2015-4165		Elasticsearch 安全漏洞
CVE-2015-5619		Elasticsearch Logstash 安全漏洞
CVE-2015-6941		Salt win_useradd、salt-cloud和Linode驱动程序安全漏洞
CVE-2015-7764		Lemur 安全漏洞
CVE-2017-12754		多款ASUS产品Asuswrt-Merlin httpd 缓冲区错误漏洞
CVE-2014-5144		Telescope 跨站脚本漏洞

Showing top 20 of 38 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2015-2291

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2015-2291

I. Basic Information for CVE-2015-2291

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Shenlong Deep Dive — AI Deep Analysis

Affected Products

II. Public POCs for CVE-2015-2291

III. Intelligence Information for CVE-2015-2291

Same Patch Batch · n/a · 2017-08-09 · 38 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2015-2291

Leave a comment