Ryan Warns

6 exploits Active since Mar 2020
CVE-2019-7240 WRITEUP HIGH WRITEUP
Moo0 System Monitor <1.83 - RCE
An issue was discovered in WinRing0x64.sys in Moo0 System Monitor 1.83. The vulnerable driver exposes a wrmsr instruction via IOCTL 0x9C402088 and does not properly filter the Model Specific Register (MSR). Allowing arbitrary MSR writes can lead to Ring-0 code execution and escalation of privileges.
CVSS 7.2
CVE-2019-7244 WRITEUP HIGH WRITEUP
AIDA64 <5.99 - RCE
An issue was discovered in kerneld.sys in AIDA64 before 5.99. The vulnerable driver exposes a wrmsr instruction via IOCTL 0x80112084 and does not properly filter the Model Specific Register (MSR). Allowing arbitrary MSR writes can lead to Ring-0 code execution and escalation of privileges.
CVSS 7.2
CVE-2019-7245 WRITEUP HIGH WRITEUP
TechPowerUp GPU-Z <2.23.0 - RCE
An issue was discovered in GPU-Z.sys in TechPowerUp GPU-Z before 2.23.0. The vulnerable driver exposes a wrmsr instruction via an IOCTL and does not properly filter the Model Specific Register (MSR). Allowing arbitrary MSR writes can lead to Ring-0 code execution and escalation of privileges.
CVSS 7.2
CVE-2019-7246 WRITEUP MEDIUM WRITEUP
AMD ATI Diagnostics Hardware Abstraction Sys/Overclocking Utility 5...
An issue was discovered in atillk64.sys in AMD ATI Diagnostics Hardware Abstraction Sys/Overclocking Utility 5.11.9.0. The vulnerable driver exposes a wrmsr instruction and does not properly filter the Model Specific Register (MSR). Allowing arbitrary MSR writes can lead to Ring-0 code execution and escalation of privileges.
CVSS 6.7
CVE-2019-7247 WRITEUP CRITICAL WRITEUP
AMD OverDrive - RCE
An issue was discovered in AODDriver2.sys in AMD OverDrive. The vulnerable driver exposes a wrmsr instruction via IOCTL 0x81112ee0 and does not properly filter the Model Specific Register (MSR). Allowing arbitrary MSR writes can lead to Ring-0 code execution and escalation of privileges.
CVSS 9.8
CVE-2019-7630 WRITEUP HIGH WRITEUP
Gigabyte APP Center <19.0227.1 - Privilege Escalation
An issue was discovered in gdrv.sys in Gigabyte APP Center before 19.0227.1. The vulnerable driver exposes a wrmsr instruction via IOCTL 0xC3502580 and does not properly filter the target Model Specific Register (MSR). Allowing arbitrary MSR writes can lead to Ring-0 code execution and escalation of privileges.
CVSS 7.2