CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2018-19321

Known Exploited (CISA KEV)HIGH
7.8
CVSS Severity Score
EPSS Score46.2490%
EPSS Percentile87.84th
Published2018年12月21日
Last Modified2025年11月7日

Vulnerability Description

The GPCIDrv and GDrv low-level drivers in GIGABYTE APP Center v1.05.21 and earlier, AORUS GRAPHICS ENGINE before 1.57, XTREME GAMING ENGINE before 1.26, and OC GURU II v2.08 expose functionality to read and write arbitrary physical memory. This could be leveraged by a local attacker to elevate privileges.

Affected Platforms (CPE)

📦
Gigabyte

Aorus Graphics Engine

< 1.57
📦
Gigabyte

App Center

< 19.0422.1
📦
Gigabyte

Oc Guru Ii

= 2.08
📦
Gigabyte

Xtreme Gaming Engine

< 1.26

References & Advisories

🔗 http://seclists.org/fulldisclosure/2018/Dec/39
🔗 http://www.securityfocus.com/bid/106252
🔗 https://www.gigabyte.com/Support/Security/1801
🔗 https://www.secureauth.com/labs/advisories/gigabyte-drivers-elevation-privilege-vulnerabilities
🔗 http://seclists.org/fulldisclosure/2018/Dec/39
🔗 http://www.securityfocus.com/bid/106252
🔗 https://www.gigabyte.com/Support/Security/1801
🔗 https://www.secureauth.com/labs/advisories/gigabyte-drivers-elevation-privilege-vulnerabilities

相關漏洞威脅

CVE-2018-193239.8

The GDrv low-level driver in GIGABYTE APP Center v1.05.21 and earlier, AORUS GRAPHICS ENGINE before 1.57, XTREME GAMING ENGINE bef...

CVE-2018-193207.8

The GDrv low-level driver in GIGABYTE APP Center v1.05.21 and earlier, AORUS GRAPHICS ENGINE before 1.57, XTREME GAMING ENGINE bef...

CVE-2018-193227.8

The GPCIDrv and GDrv low-level drivers in GIGABYTE APP Center v1.05.21 and earlier, AORUS GRAPHICS ENGINE before 1.57, XTREME GAMI...

CVE-2026-121917.8

A vulnerability was found in Comma AI Openpilot 0.11. This issue affects the function pickle.load/pickle.loads of the file selfdri...