What is CVE-2021-47786?

A medium-severity vulnerability in the Redragon Gaming Mouse driver allows attackers to trigger a denial of service. Organizations should prioritize remediation to prevent potential system crashes.

What is the severity of CVE-2021-47786?

CVE-2021-47786 has a severity rating of MEDIUM with a CVSS base score of 6.8.

CVE-2021-47786 | Medium Vulnerability in Redragon Gaming Mouse Driver

CVE-2021-47786 describes a kernel-level vulnerability within the Redragon Gaming Mouse driver. This flaw allows attackers to send malformed IOCTL requests, which can lead to a denial of service. By crafting a specific 2000-byte buffer with particular byte patterns directed at the REDRAGON_MOUSE device, the kernel driver can be made to crash. The attack vector is local, requiring low privileges, and the complexity is also low.

With a CVSS score of 6.8, this vulnerability is classified as medium severity, indicating that while it is not critical, it still poses a significant risk. Organizations utilizing the Redragon devices should be aware of the potential for system instability and take proactive steps to mitigate this risk.

The vulnerability was published on January 16, 2026, and its analysis indicates that it has not yet been exploited in the wild. However, organizations should prioritize patching immediately to avoid potential exploitation.

In summary, organizations must be vigilant with their Redragon Gaming Mouse drivers, ensuring that they are updated to the latest versions to prevent denial of service scenarios.

Vulnerability Details

Redragon Gaming Mouse driver contains a kernel-level vulnerability that allows attackers to trigger a denial of service by sending malformed IOCTL requests. Attackers can send a crafted 2000-byte buffer with specific byte patterns to the REDRAGON_MOUSE device to crash the kernel driver.

This vulnerability has a CVSS score of 6.8, indicating a medium level of severity. The affected product includes various firmware versions of the Redragon Gaming Mouse.

Technical Analysis

The root cause of this vulnerability stems from the improper handling of IOCTL requests. Attackers can exploit this weakness by sending specially crafted requests, which causes the driver to crash, leading to denial of service.

The attack vector is local, meaning that an attacker must have physical access to the system or be on the same network. The attack complexity is low, as it does not require significant skill to execute.

No user interaction is required for the attack to succeed, which heightens the risk, as the system can be compromised without any action from the user.

Risk & Impact Analysis

Risk to organizations includes potential system crashes that result from denial of service attacks. The blast radius could affect all users of the Redragon Gaming Mouse, potentially leading to significant downtime and productivity loss.

The urgency of addressing this vulnerability is categorized as medium. Organizations should schedule remediation as part of their patch management cycle to minimize risk.

Exploitation Status

Signal	Status
Known Exploit	No
Public PoC	No
Actively Exploited	No
Ransomware Use	No

Affected Versions

All versions prior to vendor patch are affected. Specifically, the vulnerable firmware versions include: m725-lit, m617-lit, m910-ks, m801p-rgb, m602-ks, m914w-rgb, m816-pro, m602a-rgb, m721, m602aw-rgb, m915rgb-wl, m712-rgb, m910-k, and bm-4091.

Mitigation & Remediation

Organizations should prioritize patching immediately. Ensure that the latest firmware updates from the vendor, Redragon, are applied to all affected devices.

For further assistance, organizations may consider engaging in penetration testing services to validate the security of their systems.

Detection Guidance

Monitoring logs for unusual IOCTL request patterns can provide early indicators of potential exploitation attempts. Organizations should also watch for system crashes that correlate with the use of Redragon devices.

AppSecure Threat Intelligence Insight

This vulnerability highlights the importance of securing kernel-level drivers within peripheral devices. As threats evolve, it is crucial for organizations to stay informed about vulnerabilities in hardware components.

Security teams should consider implementing a penetration testing methodology as part of their security practices.

To learn more about effective security measures, organizations can explore vulnerability management programs tailored to their specific needs.

Finally, engaging in cloud penetration testing can further enhance the security posture against such vulnerabilities.

Disclaimer: This content was generated using AI. While we strive for accuracy, please verify critical information with official sources.

CVE ID	Title	Severity	Vulnerability Type	Published
CVE-2025-65418	CVE-2025-65418: High Vulnerability in docuFORM Managed Print Service Client	HIGH	Path Traversal	May 11, 2026
CVE-2025-65417	CVE-2025-65417: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	XSS	May 11, 2026
CVE-2025-65416	CVE-2025-65416: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	Unrestricted File Upload	May 11, 2026
CVE-2025-65415	CVE-2025-65415: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	Session Fixation	May 11, 2026
CVE-2025-61314	CVE-2025-61314: High Vulnerability in GmbH Mecury Managed Print Services	HIGH	XSS	May 11, 2026

CVE-2021-47786: Medium Vulnerability in Redragon Gaming Mouse Driver