CVE-2019-7630

An issue was discovered in gdrv.sys in Gigabyte APP Center before 19.0227.1. The vulnerable driver exposes a wrmsr instruction via IOCTL 0xC3502580 and does not properly filter the target Model Specific Register MSR. Allowing arbitrary MSR writes can lead to Ring-0 code execution and escalation o...

EUVD-2019-17163

Malware in sbrugna...

Malicious code in @amber-team/app-center-utils (npm)

The package @amber-team/app-center-utils was found to contain malicious code...

Malicious code in @avocado-team/app-center-sdk-for-white-team (npm)

The package @avocado-team/app-center-sdk-for-white-team was found to contain malicious code...

Malicious code in @tiktok-frontend/app-center-connect (npm)

The package @tiktok-frontend/app-center-connect was found to contain malicious code...

MAL-2025-7049 Malicious code in @amber-team/app-center-utils (npm)

The package @amber-team/app-center-utils was found to contain malicious code...

MAL-2025-7103 Malicious code in @avocado-team/app-center-mini-landing (npm)

The package @avocado-team/app-center-mini-landing was found to contain malicious code...

MAL-2025-7102 Malicious code in @avocado-team/app-center-app-widget (npm)

The package @avocado-team/app-center-app-widget was found to contain malicious code...

Malicious code in @avocado-team/app-center-app-widget (npm)

The package @avocado-team/app-center-app-widget was found to contain malicious code...

MAL-2025-9564 Malicious code in @tiktok-frontend/app-center-connect (npm)

The package @tiktok-frontend/app-center-connect was found to contain malicious code...

MAL-2025-7104 Malicious code in @avocado-team/app-center-sdk-for-white-team (npm)

The package @avocado-team/app-center-sdk-for-white-team was found to contain malicious code...

Critical Firmware Vulnerability in Gigabyte Systems Exposes ~7 Million Devices

Cybersecurity researchers have found "backdoor-like behavior" within Gigabyte systems, which they say enables the UEFI firmware of the devices to drop a Windows executable and retrieve updates in an unsecure format. Firmware security firm Eclypsium said it first detected the anomaly in April 2023...

GIGABYTE OC GURU II 2.08 Multiple Vulnerabilities

The version of GIGABYTE OC GURU II installed on the remote host is 2.08. It is, therefore, affected by multiple vulnerabilities as referenced in GIGABYTE security advisory 1801: - The GDrv low-level driver in GIGABYTE APP Center v1.05.21 and earlier, AORUS GRAPHICS ENGINE before 1.57, XTREME GAMI...

GIGABYTE APP Center < 19.4.22.1 Multiple Vulnerabilities

The version of GIGABYTE APP Center installed on the remote host is prior to 19.4.22.1. It is, therefore, affected by multiple vulnerabilities as referenced in GIGABYTE security advisory 1801: - The GDrv low-level driver in GIGABYTE APP Center v1.05.21 and earlier, AORUS GRAPHICS ENGINE before 1.5...

GIGABYTE APP CENTER Installed (Windows)

Binary data gigabyteappcenterwininstalled.nbin...

Vulnerability of the GDrv driver – a program for configuring Gigabyte Aorus Engine graphics cards. The GIGABYTE App Center, a program for managing applications. The Extreme Gaming Engine, a program for monitoring the status of graphics cards. It allows a hacker to execute arbitrary code.

The vulnerability of the GDrv driver, a program for configuring Gigabyte Aorus Engine graphics cards, the GIGABYTE App Center, and the Extreme Gaming Engine status monitoring program is related to deficiencies in access control. Exploiting this vulnerability can allow attackers to execute arbitra...

The vulnerabilities of the GPCIDrv and GDrv drivers allow attackers to execute arbitrary code. These drivers are used by the Gigabyte Aorus Engine video card configuration program, the GIGABYTE App Center for application management, and the Extreme Gaming Engine for video card status monitoring.

The vulnerabilities of the GPCIDrv and GDrv drivers are related to implementation errors and functions in the Gigabyte Aorus Engine graphics card configuration software, the GIGABYTE App Center application management tool, and the Extreme Gaming Engine status monitoring software. Exploiting these...

The vulnerabilities of the GPCIDrv and GDrv drivers allow attackers to execute arbitrary code. These drivers are used by the Gigabyte Aorus Engine video card configuration program, the GIGABYTE App Center for application management, and the Extreme Gaming Engine for video card status monitoring.

The vulnerability of the GPCIDrv and GDrv drivers is related to the open IOCTL mechanism, which lacks sufficient access control. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

Vulnerability of the GDrv driver – a program for configuring Gigabyte Aorus Engine graphics cards. The GIGABYTE App Center, a program for managing applications. The Extreme Gaming Engine, a program for monitoring the status of graphics cards. It allows a hacker to execute arbitrary code.

The vulnerability of the GDrv driver, a program for configuring Gigabyte Aorus Engine graphics cards, the GIGABYTE App Center, and the Extreme Gaming Engine status monitoring program is related to access control deficiencies. Exploiting this vulnerability can allow an attacker to execute arbitrar...

VulnCheck KEV: CVE-2018-19321

The GPCIDrv and GDrv low-level drivers in GIGABYTE App Center, AORUS Graphics Engine, XTREME Gaming Engine, and OC GURU II expose functionality to read and write arbitrary physical memory. This could be leveraged by a local attacker to elevate privileges...