logo

CVE-2018-19320 - GIGABYTE Multiple Products Unspecified Vulnerability

CVE-2018-19320

GIGABYTE | Multiple Products

  • Date Added:
  • 2022-10-24
  • Due Date:
  • 2022-11-14
Vulnerability Name

GIGABYTE Multiple Products Unspecified Vulnerability

Description

The GDrv low-level driver in GIGABYTE App Center, AORUS Graphics Engine, XTREME Gaming Engine, and OC GURU II exposes ring0 memcpy-like functionality that could allow a local attacker to take complete control of the affected system.

Known To Be Used in Ransomware Campaigns?

Known

Action

Apply updates per vendor instructions.

Additional Notes
https://www.gigabyte.com/Support/Security/1801; https://nvd.nist.gov/vuln/detail/CVE-2018-19320

Free security scan for your website