CVE-2018-19322 vulnerability in Gigabyte Products
Published on December 21, 2018
The GPCIDrv and GDrv low-level drivers in GIGABYTE APP Center v1.05.21 and earlier, AORUS GRAPHICS ENGINE before 1.57, XTREME GAMING ENGINE before 1.26, and OC GURU II v2.08 expose functionality to read/write data from/to IO ports. This could be leveraged in a number of ways to ultimately run code with elevated privileges.
Known Exploited Vulnerability
This GIGABYTE Multiple Products Code Execution Vulnerability is part of CISA's list of Known Exploited Vulnerabilities. The GPCIDrv and GDrv low-level drivers in GIGABYTE App Center, AORUS Graphics Engine, XTREME Gaming Engine, and OC GURU II expose functionality to read/write data from/to IO ports. This could be leveraged in a number of ways to ultimately run code with elevated privileges.
The following remediation steps are recommended / required by November 14, 2022: Apply updates per vendor instructions.
Vulnerability Analysis
CVE-2018-19322 is exploitable with local system access, and requires small amount of user privileges. This vulnerability is considered to have a low attack complexity. It has an exploitability score of 1.8 out of four. The potential impact of an exploit of this vulnerability is considered to be very high.
Exposed Dangerous Method or Function
The software provides an Applications Programming Interface (API) or similar interface for interaction with external actors, but the interface includes a dangerous method or function that is not properly restricted.
Products Associated with CVE-2018-19322
You can be notified by stack.watch whenever vulnerabilities like CVE-2018-19322 are published in these products:
What versions are vulnerable to CVE-2018-19322?
- Gigabyte Aorus Graphics Engine Up to Version 1.33
- Gigabyte App Center Up to Version 1.05.21
- Gigabyte Oc Guru Ii Version 2.08
- Gigabyte Xtreme Gaming Engine Up to Version 1.25