CVE-2018-19323

GIGABYTE Multiple Products Privilege Escalation Vulnerability

Beschreibung

The GPCIDrv and GDrv low-level drivers in GIGABYTE App Center, AORUS Graphics Engine, XTREME Gaming Engine, and OC GURU expose functionality to read and write arbitrary physical memory. This could be leveraged by a local attacker to elevate privileges.

Schweregrad: CRITICAL

CVSS-Score: 9.8

Hersteller: GIGABYTE

Produkt: Multiple Products