CVE-2018-19320

🗓️ 21 Dec 2018 00:00:00Reported by AttackerKBType

The GDrv driver in GIGABYTE APP Center v1.05.21 and earlier, AORUS GRAPHICS ENGINE before 1.57, XTREME GAMING ENGINE before 1.26, and OC GURU II v2.08 allows local attacker to take complete control of affected system

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 17
Cvelist	CVE-2018-19320	21 Dec 201823:00	–	cvelist
Malwarebytes	Threat spotlight: RobbinHood ransomware takes the driver’s seat	20 Feb 202018:09	–	malwarebytes
CVE	CVE-2018-19320	21 Dec 201823:29	–	cve
Prion	Information disclosure	21 Dec 201823:29	–	prion
NVD	CVE-2018-19320	21 Dec 201823:29	–	nvd
CISA KEV Catalog	GIGABYTE Multiple Products Unspecified Vulnerability	24 Oct 202200:00	–	cisa_kev
Vulnrichment	CVE-2018-19320	21 Dec 201823:00	–	vulnrichment
Circl	CVE-2018-19320	7 Feb 202013:20	–	circl
The Hacker News	BlackByte Ransomware Abuses Vulnerable Windows Driver to Disable Security Solutions	7 Oct 202206:52	–	thn
The Hacker News	Hackers Actively Exploiting Cisco AnyConnect and GIGABYTE Drivers Vulnerabilities	26 Oct 202207:55	–	thn

Source	Link
cve	www.cve.mitre.org/cgi-bin/cvename.cgi
securityfocus	www.securityfocus.com/bid/106252
seclists	www.seclists.org/fulldisclosure/2018/Dec/39
gigabyte	www.gigabyte.com/tw/Support/Utility/Graphics-Card
gigabyte	www.gigabyte.com/Support/Security/1801
secureauth	www.secureauth.com/labs/advisories/gigabyte-drivers-elevation-privilege-vulnerabilities

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

21 Dec 2018 00:00Current

2.9Low risk

Vulners AI Score2.9

CVSS27.2

CVSS37.8

EPSS0.17584