90 matches found
Google Chrome 缓冲区错误漏洞
Google Chrome is a web browser from Google, Inc. A security vulnerability exists in Google Chrome that stems from an object lifecycle issue in ANGLE. An attacker could use this vulnerability to bypass security restrictions...
Qt QLibrary 缓冲区错误漏洞
Qt QLibrary is a code framework and QLibrary is one of his libraries. A buffer error vulnerability exists in Qt QLibrary that stems from an out-of-bounds write in QOutlineMapper::convertPath called from QRasterPaintEngine::fill and QPaintEngineEx::stroke...
The vulnerability of the ANGLE graphics engine in the Google Chrome browser allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.
The vulnerability of the ANGLE graphics engine in the Google Chrome browser is related to the storage beyond the buffer memory boundaries. Exploiting this vulnerability allows a malicious actor to compromise the confidentiality, integrity, and accessibility of the protected information through a...
The vulnerability of the ANGEL graphics engine in Google Chrome browsers, related to the execution of operations beyond buffer boundaries in memory, allows attackers to access confidential data, compromise its integrity, and cause service failures.
The vulnerability of the ANGEL graphics engine in Google Chrome browsers is related to a buffer overflow error in dynamic memory. Exploiting this vulnerability can allow an attacker to gain access to confidential data, compromise its integrity, and cause service interruptions...
Arbitrary Code Execution Vulnerability in Multiple GIGABYTE Products (CNVD-2018-26458)
GIGABYTE APP Center and others are products of GIGABYTE Technology, a Chinese company. GIGABYTE APP Center is a software program for managing and updating GIGABYTE's product utility programs. AORUS GRAPHICS ENGINE is a software program for overclocking graphics cards. An arbitrary code execution...
Arbitrary Code Execution Vulnerability in Multiple GIGABYTE Products (CNVD-2018-26457)
GIGABYTE APP Center and others are products of GIGABYTE Technology, a Chinese company. GIGABYTE APP Center is a software program for managing and updating GIGABYTE's product utility programs. AORUS GRAPHICS ENGINE is a software program for overclocking graphics cards. A security vulnerability...
Arbitrary Code Execution Vulnerability in Multiple GIGABYTE Products (CNVD-2018-26460)
GIGABYTE APP Center and others are products of GIGABYTE Technology, a Chinese company. GIGABYTE APP Center is a software program for managing and updating GIGABYTE's product utility programs. AORUS GRAPHICS ENGINE is a software program for overclocking graphics cards. A security vulnerability...
CVE-2018-19322
The GPCIDrv and GDrv low-level drivers in GIGABYTE APP Center v1.05.21 and earlier, AORUS GRAPHICS ENGINE before 1.57, XTREME GAMING ENGINE before 1.26, and OC GURU II v2.08 expose functionality to read/write data from/to IO ports. This could be leveraged in a number of ways to ultimately run cod...
CVE-2018-19320
The GDrv low-level driver in GIGABYTE APP Center v1.05.21 and earlier, AORUS GRAPHICS ENGINE before 1.57, XTREME GAMING ENGINE before 1.26, and OC GURU II v2.08 exposes ring0 memcpy-like functionality that could allow a local attacker to take complete control of the affected system...
CVE-2018-19323
The GDrv low-level driver in GIGABYTE APP Center v1.05.21 and earlier, AORUS GRAPHICS ENGINE before 1.57, XTREME GAMING ENGINE before 1.26, and OC GURU II v2.08 exposes functionality to read and write Machine Specific Registers MSRs...
Information disclosure
The GDrv low-level driver in GIGABYTE APP Center v1.05.21 and earlier, AORUS GRAPHICS ENGINE before 1.57, XTREME GAMING ENGINE before 1.26, and OC GURU II v2.08 exposes ring0 memcpy-like functionality that could allow a local attacker to take complete control of the affected system...
CVE-2018-19321
The GPCIDrv and GDrv low-level drivers in GIGABYTE APP Center v1.05.21 and earlier, AORUS GRAPHICS ENGINE before 1.57, XTREME GAMING ENGINE before 1.26, and OC GURU II v2.08 expose functionality to read and write arbitrary physical memory. This could be leveraged by a local attacker to elevate...
Code injection
The GPCIDrv and GDrv low-level drivers in GIGABYTE APP Center v1.05.21 and earlier, AORUS GRAPHICS ENGINE before 1.57, XTREME GAMING ENGINE before 1.26, and OC GURU II v2.08 expose functionality to read and write arbitrary physical memory. This could be leveraged by a local attacker to elevate...
CVE-2018-19321
CVE-2018-19321 affects GIGABYTE GPCIDrv and GDrv low-level drivers in APP Center (and related tools) that expose functionality to read/write arbitrary physical memory. The root cause is insufficient input control in the drivers, enabling a local attacker to elevate privileges. Affected products/v...
CVE-2018-19323
The GDrv low-level driver in GIGABYTE APP Center v1.05.21 and earlier, AORUS GRAPHICS ENGINE before 1.57, XTREME GAMING ENGINE before 1.26, and OC GURU II v2.08 exposes functionality to read and write Machine Specific Registers MSRs...
CVE-2018-19320
CVE-2018-19320 concerns the GDrv low-level driver used by GIGABYTE APP Center and related tools (AORUS GRAPHICS ENGINE before 1.57, XTREME GAMING ENGINE before 1.26, OC GURU II v2.08). The vulnerability exposes ring0 memcpy-like functionality that could let a local attacker gain full control of t...
CVE-2018-19321
The GPCIDrv and GDrv low-level drivers in GIGABYTE APP Center v1.05.21 and earlier, AORUS GRAPHICS ENGINE before 1.57, XTREME GAMING ENGINE before 1.26, and OC GURU II v2.08 expose functionality to read and write arbitrary physical memory. This could be leveraged by a local attacker to elevate...
CVE-2018-19323
CVE-2018-19323 affects the GDrv low-level driver in GIGABYTE APP Center (and related tools: AORUS GRAPHICS ENGINE <1.57, XTREME GAMING ENGINE <1.26, OC GURU II
CVE-2018-19322
The CVE-2018-19322 issue affects GIGABYTE APP Center and related components (GDrv; GPCIDrv; AORUS GRAPHICS ENGINE; XTREME GAMING ENGINE; OC GURU II) with IO port read/write access exposed by these low‑level drivers. The documented impact is local privilege elevation via arbitrary IO port operatio...
PT-2018-3843 · Gigabyte · Oc Guru Ii +4
Name of the Vulnerable Software and Affected Versions: GIGABYTE APP Center versions 1.05.21 and earlier AORUS GRAPHICS ENGINE versions prior to 1.57 XTREME GAMING ENGINE versions prior to 1.26 OC GURU II version 2.08 Description: The issue is related to insufficient access control in the GDrv...