Lucene search
K

90 matches found

CNNVD
CNNVD
added 2021/12/13 12:0 a.m.5 views

Google Chrome 缓冲区错误漏洞

Google Chrome is a web browser from Google, Inc. A security vulnerability exists in Google Chrome that stems from an object lifecycle issue in ANGLE. An attacker could use this vulnerability to bypass security restrictions...

8.8CVSS7.9AI score0.0075EPSS
Exploits0References10
CNNVD
CNNVD
added 2021/08/12 12:0 a.m.3 views

Qt QLibrary 缓冲区错误漏洞

Qt QLibrary is a code framework and QLibrary is one of his libraries. A buffer error vulnerability exists in Qt QLibrary that stems from an out-of-bounds write in QOutlineMapper::convertPath called from QRasterPaintEngine::fill and QPaintEngineEx::stroke...

7.5CVSS7AI score0.0306EPSS
Exploits0References14
BDU FSTEC
BDU FSTEC
added 2020/11/12 12:0 a.m.6 views

The vulnerability of the ANGLE graphics engine in the Google Chrome browser allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the ANGLE graphics engine in the Google Chrome browser is related to the storage beyond the buffer memory boundaries. Exploiting this vulnerability allows a malicious actor to compromise the confidentiality, integrity, and accessibility of the protected information through a...

7.3CVSS7.9AI score0.01653EPSS
Exploits0References8Affected Software5
BDU FSTEC
BDU FSTEC
added 2020/04/23 12:0 a.m.10 views

The vulnerability of the ANGEL graphics engine in Google Chrome browsers, related to the execution of operations beyond buffer boundaries in memory, allows attackers to access confidential data, compromise its integrity, and cause service failures.

The vulnerability of the ANGEL graphics engine in Google Chrome browsers is related to a buffer overflow error in dynamic memory. Exploiting this vulnerability can allow an attacker to gain access to confidential data, compromise its integrity, and cause service interruptions...

9.3CVSS7.4AI score0.01849EPSS
Exploits0References6Affected Software4
CNVD
CNVD
added 2018/12/25 12:0 a.m.5 views

Arbitrary Code Execution Vulnerability in Multiple GIGABYTE Products (CNVD-2018-26458)

GIGABYTE APP Center and others are products of GIGABYTE Technology, a Chinese company. GIGABYTE APP Center is a software program for managing and updating GIGABYTE's product utility programs. AORUS GRAPHICS ENGINE is a software program for overclocking graphics cards. An arbitrary code execution...

7.8CVSS8.2AI score0.01872EPSS
Exploits2References1
CNVD
CNVD
added 2018/12/25 12:0 a.m.2 views

Arbitrary Code Execution Vulnerability in Multiple GIGABYTE Products (CNVD-2018-26457)

GIGABYTE APP Center and others are products of GIGABYTE Technology, a Chinese company. GIGABYTE APP Center is a software program for managing and updating GIGABYTE's product utility programs. AORUS GRAPHICS ENGINE is a software program for overclocking graphics cards. A security vulnerability...

7.8CVSS6.8AI score0.03597EPSS
Exploits4References1
CNVD
CNVD
added 2018/12/25 12:0 a.m.19 views

Arbitrary Code Execution Vulnerability in Multiple GIGABYTE Products (CNVD-2018-26460)

GIGABYTE APP Center and others are products of GIGABYTE Technology, a Chinese company. GIGABYTE APP Center is a software program for managing and updating GIGABYTE's product utility programs. AORUS GRAPHICS ENGINE is a software program for overclocking graphics cards. A security vulnerability...

7.8CVSS6.6AI score0.03671EPSS
Exploits2References1
NVD
NVD
added 2018/12/21 11:29 p.m.26 views

CVE-2018-19322

The GPCIDrv and GDrv low-level drivers in GIGABYTE APP Center v1.05.21 and earlier, AORUS GRAPHICS ENGINE before 1.57, XTREME GAMING ENGINE before 1.26, and OC GURU II v2.08 expose functionality to read/write data from/to IO ports. This could be leveraged in a number of ways to ultimately run cod...

7.8CVSS7.6AI score0.01872EPSS
Exploits2References6
OSV
OSV
added 2018/12/21 11:29 p.m.4 views

CVE-2018-19320

The GDrv low-level driver in GIGABYTE APP Center v1.05.21 and earlier, AORUS GRAPHICS ENGINE before 1.57, XTREME GAMING ENGINE before 1.26, and OC GURU II v2.08 exposes ring0 memcpy-like functionality that could allow a local attacker to take complete control of the affected system...

7.8CVSS5.8AI score0.03597EPSS
Exploits4References6
OSV
OSV
added 2018/12/21 11:29 p.m.5 views

CVE-2018-19323

The GDrv low-level driver in GIGABYTE APP Center v1.05.21 and earlier, AORUS GRAPHICS ENGINE before 1.57, XTREME GAMING ENGINE before 1.26, and OC GURU II v2.08 exposes functionality to read and write Machine Specific Registers MSRs...

9.8CVSS5.8AI score0.08523EPSS
Exploits3References6
Prion
Prion
added 2018/12/21 11:29 p.m.29 views

Information disclosure

The GDrv low-level driver in GIGABYTE APP Center v1.05.21 and earlier, AORUS GRAPHICS ENGINE before 1.57, XTREME GAMING ENGINE before 1.26, and OC GURU II v2.08 exposes ring0 memcpy-like functionality that could allow a local attacker to take complete control of the affected system...

7.2CVSS7.5AI score0.03597EPSS
Exploits4References5Affected Software4
OSV
OSV
added 2018/12/21 11:29 p.m.3 views

CVE-2018-19321

The GPCIDrv and GDrv low-level drivers in GIGABYTE APP Center v1.05.21 and earlier, AORUS GRAPHICS ENGINE before 1.57, XTREME GAMING ENGINE before 1.26, and OC GURU II v2.08 expose functionality to read and write arbitrary physical memory. This could be leveraged by a local attacker to elevate...

7.8CVSS5.9AI score0.03671EPSS
Exploits2References5
Prion
Prion
added 2018/12/21 11:29 p.m.27 views

Code injection

The GPCIDrv and GDrv low-level drivers in GIGABYTE APP Center v1.05.21 and earlier, AORUS GRAPHICS ENGINE before 1.57, XTREME GAMING ENGINE before 1.26, and OC GURU II v2.08 expose functionality to read and write arbitrary physical memory. This could be leveraged by a local attacker to elevate...

7.2CVSS7.2AI score0.03671EPSS
Exploits2References4Affected Software4
CVE
CVE
added 2018/12/21 11:0 p.m.727 views

CVE-2018-19321

CVE-2018-19321 affects GIGABYTE GPCIDrv and GDrv low-level drivers in APP Center (and related tools) that expose functionality to read/write arbitrary physical memory. The root cause is insufficient input control in the drivers, enabling a local attacker to elevate privileges. Affected products/v...

7.8CVSS7.3AI score0.03671EPSS
In wildExploits2References5Affected Software4
Vulnrichment
Vulnrichment
added 2018/12/21 11:0 p.m.10 views

CVE-2018-19323

The GDrv low-level driver in GIGABYTE APP Center v1.05.21 and earlier, AORUS GRAPHICS ENGINE before 1.57, XTREME GAMING ENGINE before 1.26, and OC GURU II v2.08 exposes functionality to read and write Machine Specific Registers MSRs...

9.4AI score0.08523EPSS
Exploits3References5
CVE
CVE
added 2018/12/21 11:0 p.m.762 views

CVE-2018-19320

CVE-2018-19320 concerns the GDrv low-level driver used by GIGABYTE APP Center and related tools (AORUS GRAPHICS ENGINE before 1.57, XTREME GAMING ENGINE before 1.26, OC GURU II v2.08). The vulnerability exposes ring0 memcpy-like functionality that could let a local attacker gain full control of t...

7.8CVSS7.5AI score0.03597EPSS
In wildExploits4References6Affected Software4
Cvelist
Cvelist
added 2018/12/21 11:0 p.m.34 views

CVE-2018-19321

The GPCIDrv and GDrv low-level drivers in GIGABYTE APP Center v1.05.21 and earlier, AORUS GRAPHICS ENGINE before 1.57, XTREME GAMING ENGINE before 1.26, and OC GURU II v2.08 expose functionality to read and write arbitrary physical memory. This could be leveraged by a local attacker to elevate...

7.3AI score0.03671EPSS
Exploits2References4
CVE
CVE
added 2018/12/21 11:0 p.m.719 views

CVE-2018-19323

CVE-2018-19323 affects the GDrv low-level driver in GIGABYTE APP Center (and related tools: AORUS GRAPHICS ENGINE <1.57, XTREME GAMING ENGINE <1.26, OC GURU II

9.8CVSS9.2AI score0.08523EPSS
In wildExploits3References6Affected Software4
CVE
CVE
added 2018/12/21 11:0 p.m.707 views

CVE-2018-19322

The CVE-2018-19322 issue affects GIGABYTE APP Center and related components (GDrv; GPCIDrv; AORUS GRAPHICS ENGINE; XTREME GAMING ENGINE; OC GURU II) with IO port read/write access exposed by these low‑level drivers. The documented impact is local privilege elevation via arbitrary IO port operatio...

7.8CVSS7.6AI score0.01872EPSS
In wildExploits2References6Affected Software4
Positive Technologies
Positive Technologies
added 2018/12/21 12:0 a.m.5 views

PT-2018-3843 · Gigabyte · Oc Guru Ii +4

Name of the Vulnerable Software and Affected Versions: GIGABYTE APP Center versions 1.05.21 and earlier AORUS GRAPHICS ENGINE versions prior to 1.57 XTREME GAMING ENGINE versions prior to 1.26 OC GURU II version 2.08 Description: The issue is related to insufficient access control in the GDrv...

7.8CVSS7.3AI score0.03597EPSS
Exploits4References20
Rows per page
Query Builder