CyberSec.Space Logo
Back to CVE Browser

CVE-2018-19321

Known Exploited (CISA KEV)HIGH
7.8
CVSS Severity Score
EPSS Score46.2490%
EPSS Percentile87.84th
PublishedDec 21, 2018
Last ModifiedNov 7, 2025

Vulnerability Description

The GPCIDrv and GDrv low-level drivers in GIGABYTE APP Center v1.05.21 and earlier, AORUS GRAPHICS ENGINE before 1.57, XTREME GAMING ENGINE before 1.26, and OC GURU II v2.08 expose functionality to read and write arbitrary physical memory. This could be leveraged by a local attacker to elevate privileges.

Affected Platforms (CPE)

πŸ“¦
Gigabyte

Aorus Graphics Engine

< 1.57
πŸ“¦
Gigabyte

App Center

< 19.0422.1
πŸ“¦
Gigabyte

Oc Guru Ii

= 2.08
πŸ“¦
Gigabyte

Xtreme Gaming Engine

< 1.26

References & Advisories

πŸ”— http://seclists.org/fulldisclosure/2018/Dec/39
πŸ”— http://www.securityfocus.com/bid/106252
πŸ”— https://www.gigabyte.com/Support/Security/1801
πŸ”— https://www.secureauth.com/labs/advisories/gigabyte-drivers-elevation-privilege-vulnerabilities
πŸ”— http://seclists.org/fulldisclosure/2018/Dec/39
πŸ”— http://www.securityfocus.com/bid/106252
πŸ”— https://www.gigabyte.com/Support/Security/1801
πŸ”— https://www.secureauth.com/labs/advisories/gigabyte-drivers-elevation-privilege-vulnerabilities

Related Vulnerabilities

CVE-2018-193239.8

The GDrv low-level driver in GIGABYTE APP Center v1.05.21 and earlier, AORUS GRAPHICS ENGINE before 1.57, XTREME GAMING ENGINE bef...

CVE-2018-193207.8

The GDrv low-level driver in GIGABYTE APP Center v1.05.21 and earlier, AORUS GRAPHICS ENGINE before 1.57, XTREME GAMING ENGINE bef...

CVE-2018-193227.8

The GPCIDrv and GDrv low-level drivers in GIGABYTE APP Center v1.05.21 and earlier, AORUS GRAPHICS ENGINE before 1.57, XTREME GAMI...

CVE-2026-121917.8

A vulnerability was found in Comma AI Openpilot 0.11. This issue affects the function pickle.load/pickle.loads of the file selfdri...