Lucene search
+L

79 matches found

CNVD
CNVD
added 2019/07/19 12:0 a.m.3 views

Unauthorized Access Vulnerability in ASRock DAYS Disaster Recovery Software

ASRock DAYS disaster recovery software belongs to DAYS series of optional products, which integrates disaster recovery, fault tolerance, backup and query functions, and provides one-stack infrastructure, the same disaster recovery management, elasticity, multi-layer data protection, smooth...

6.9AI score
Exploits0
OSV
OSV
added 2018/10/30 6:29 p.m.4 views

CVE-2018-10710

The AsrDrv101.sys and AsrDrv102.sys low-level drivers in ASRock RGBLED before v1.0.35.1, A-Tuning before v3.0.210, F-Stream before v3.0.210, and RestartToUEFI before v1.0.6.2 expose functionality to read and write arbitrary physical memory. This could be leveraged by a local attacker to elevate...

7.1CVSS5.9AI score0.00982EPSS
Exploits5References2
Prion
Prion
added 2018/10/30 6:29 p.m.21 views

Code injection

The AsrDrv101.sys and AsrDrv102.sys low-level drivers in ASRock RGBLED before v1.0.35.1, A-Tuning before v3.0.210, F-Stream before v3.0.210, and RestartToUEFI before v1.0.6.2 expose functionality to read and write CR register values. This could be leveraged in a number of ways to ultimately run...

4.6CVSS7.5AI score0.0117EPSS
Exploits5References2Affected Software4
NVD
NVD
added 2018/10/30 6:29 p.m.36 views

CVE-2018-10711

The AsrDrv101.sys and AsrDrv102.sys low-level drivers in ASRock RGBLED before v1.0.35.1, A-Tuning before v3.0.210, F-Stream before v3.0.210, and RestartToUEFI before v1.0.6.2 expose functionality to read and write Machine Specific Registers MSRs. This could be leveraged to execute arbitrary ring-...

7.8CVSS7.8AI score0.01545EPSS
Exploits5References2
Prion
Prion
added 2018/10/30 6:29 p.m.23 views

Design/Logic Flaw

The AsrDrv101.sys and AsrDrv102.sys low-level drivers in ASRock RGBLED before v1.0.35.1, A-Tuning before v3.0.210, F-Stream before v3.0.210, and RestartToUEFI before v1.0.6.2 expose functionality to read and write arbitrary physical memory. This could be leveraged by a local attacker to elevate...

7.2CVSS6.8AI score0.00982EPSS
Exploits5References2Affected Software4
OSV
OSV
added 2018/10/30 6:29 p.m.6 views

CVE-2018-10709

The AsrDrv101.sys and AsrDrv102.sys low-level drivers in ASRock RGBLED before v1.0.35.1, A-Tuning before v3.0.210, F-Stream before v3.0.210, and RestartToUEFI before v1.0.6.2 expose functionality to read and write CR register values. This could be leveraged in a number of ways to ultimately run...

7.8CVSS5.8AI score0.0117EPSS
Exploits5References2
Prion
Prion
added 2018/10/30 6:29 p.m.20 views

Code injection

The AsrDrv101.sys and AsrDrv102.sys low-level drivers in ASRock RGBLED before v1.0.35.1, A-Tuning before v3.0.210, F-Stream before v3.0.210, and RestartToUEFI before v1.0.6.2 expose functionality to read/write data from/to IO ports. This could be leveraged in a number of ways to ultimately run co...

7.2CVSS7.5AI score0.01346EPSS
Exploits5References2Affected Software4
OSV
OSV
added 2018/10/30 6:29 p.m.4 views

CVE-2018-10711

The AsrDrv101.sys and AsrDrv102.sys low-level drivers in ASRock RGBLED before v1.0.35.1, A-Tuning before v3.0.210, F-Stream before v3.0.210, and RestartToUEFI before v1.0.6.2 expose functionality to read and write Machine Specific Registers MSRs. This could be leveraged to execute arbitrary ring-...

7.8CVSS6AI score0.01545EPSS
Exploits5References2
NVD
NVD
added 2018/10/30 6:29 p.m.19 views

CVE-2018-10709

The AsrDrv101.sys and AsrDrv102.sys low-level drivers in ASRock RGBLED before v1.0.35.1, A-Tuning before v3.0.210, F-Stream before v3.0.210, and RestartToUEFI before v1.0.6.2 expose functionality to read and write CR register values. This could be leveraged in a number of ways to ultimately run...

7.8CVSS7.5AI score0.0117EPSS
Exploits5References2
OSV
OSV
added 2018/10/30 6:29 p.m.7 views

CVE-2018-10712

The AsrDrv101.sys and AsrDrv102.sys low-level drivers in ASRock RGBLED before v1.0.35.1, A-Tuning before v3.0.210, F-Stream before v3.0.210, and RestartToUEFI before v1.0.6.2 expose functionality to read/write data from/to IO ports. This could be leveraged in a number of ways to ultimately run co...

7.8CVSS5.8AI score0.01346EPSS
Exploits5References2
Prion
Prion
added 2018/10/30 6:29 p.m.16 views

Code injection

The AsrDrv101.sys and AsrDrv102.sys low-level drivers in ASRock RGBLED before v1.0.35.1, A-Tuning before v3.0.210, F-Stream before v3.0.210, and RestartToUEFI before v1.0.6.2 expose functionality to read and write Machine Specific Registers MSRs. This could be leveraged to execute arbitrary ring-...

7.2CVSS7.7AI score0.01545EPSS
Exploits5References2Affected Software4
NVD
NVD
added 2018/10/30 6:29 p.m.25 views

CVE-2018-10712

The AsrDrv101.sys and AsrDrv102.sys low-level drivers in ASRock RGBLED before v1.0.35.1, A-Tuning before v3.0.210, F-Stream before v3.0.210, and RestartToUEFI before v1.0.6.2 expose functionality to read/write data from/to IO ports. This could be leveraged in a number of ways to ultimately run co...

7.8CVSS7.6AI score0.01346EPSS
Exploits5References2
Cvelist
Cvelist
added 2018/10/30 6:0 p.m.29 views

CVE-2018-10712

The AsrDrv101.sys and AsrDrv102.sys low-level drivers in ASRock RGBLED before v1.0.35.1, A-Tuning before v3.0.210, F-Stream before v3.0.210, and RestartToUEFI before v1.0.6.2 expose functionality to read/write data from/to IO ports. This could be leveraged in a number of ways to ultimately run co...

7.6AI score0.01346EPSS
Exploits5References2
Cvelist
Cvelist
added 2018/10/30 6:0 p.m.33 views

CVE-2018-10709

The AsrDrv101.sys and AsrDrv102.sys low-level drivers in ASRock RGBLED before v1.0.35.1, A-Tuning before v3.0.210, F-Stream before v3.0.210, and RestartToUEFI before v1.0.6.2 expose functionality to read and write CR register values. This could be leveraged in a number of ways to ultimately run...

7.5AI score0.0117EPSS
Exploits5References2
Cvelist
Cvelist
added 2018/10/30 6:0 p.m.34 views

CVE-2018-10710

The AsrDrv101.sys and AsrDrv102.sys low-level drivers in ASRock RGBLED before v1.0.35.1, A-Tuning before v3.0.210, F-Stream before v3.0.210, and RestartToUEFI before v1.0.6.2 expose functionality to read and write arbitrary physical memory. This could be leveraged by a local attacker to elevate...

6.8AI score0.00982EPSS
Exploits5References2
Cvelist
Cvelist
added 2018/10/30 6:0 p.m.33 views

CVE-2018-10711

The AsrDrv101.sys and AsrDrv102.sys low-level drivers in ASRock RGBLED before v1.0.35.1, A-Tuning before v3.0.210, F-Stream before v3.0.210, and RestartToUEFI before v1.0.6.2 expose functionality to read and write Machine Specific Registers MSRs. This could be leveraged to execute arbitrary ring-...

7.8AI score0.01545EPSS
Exploits5References2
CVE
CVE
added 2018/10/30 6:0 p.m.70 views

CVE-2018-10709

The CVE-2018-10709 entry concerns ASRock drivers: AsrDrv101.sys/AsrDrv102.sys in ASRock RGBLED, A-Tuning, F-Stream, RestartToUEFI. The described vulnerability arises from IOCTL interfaces that expose read/write access to CR register values, enabling local privilege escalation and potential code e...

7.8CVSS7AI score0.0117EPSS
Exploits5References2Affected Software4
CVE
CVE
added 2018/10/30 6:0 p.m.88 views

CVE-2018-10710

The CVE-2018-10710 entry concerns ASRock drivers: AsrDrv101.sys and AsrDrv102.sys in ASRock RGBLED, A-Tuning, F-Stream, and RestartToUEFI expose IOCTLs that read/write arbitrary physical memory. This enables local privilege escalation by a user with low privileges. Affected versions are ASRock RG...

7.2CVSS6.6AI score0.00982EPSS
Exploits5References2Affected Software4
CVE
CVE
added 2018/10/30 6:0 p.m.76 views

CVE-2018-10712

CVE-2018-10712 affects ASRock RGBLED and related ASRock utilities (ASrDrv101.sys/AsrDrv102.sys) that expose IO port read/write access via low-level drivers. Details from multiple sources show vulnerable components include ASRock RGBLED < v1.0.35.1, A-Tuning < v3.0.210, F-Stream < v3.0.21...

7.8CVSS7.1AI score0.01346EPSS
Exploits5References2Affected Software4
CVE
CVE
added 2018/10/30 6:0 p.m.66 views

CVE-2018-10711

The CVE-2018-10711 entry concerns ASRock driver components AsrDrv101.sys and AsrDrv102.sys used by ASRock RGBLED, A-Tuning, F-Stream, and RestartToUEFI. The driver versions listed expose functionality to read/write Machine Specific Registers (MSRs), enabling execution of arbitrary ring-0 code on ...

7.8CVSS7.3AI score0.01545EPSS
Exploits5References2Affected Software4
Rows per page
Query Builder