CVE-2018-15499

MEDIUM

GEAR Software GEARAspiWDM 2.2.5.0 - Denial of Service via Race Condition in Memory Availability Check

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2018-15499. PoCs published by DownWithUp.

AI-analyzed exploit summary This PoC exploits CVE-2018-15499, a vulnerability in the GEARAspiWDM driver, by continuously sending IOCTL requests while manipulating memory allocations to trigger a Blue Screen of Death (BSoD). The exploit leverages a race condition between memory operations and driver interactions.

Description

GEAR Software products that include GEARAspiWDM.sys, 2.2.5.0, allow local users to cause a denial of service (Race Condition and BSoD on Windows) by not checking that user-mode memory is available right before writing to it. A check is only performed at the beginning of a long subroutine.

Exploits (1)

nomisec WORKING POC 11 stars
by DownWithUp · poc
https://github.com/DownWithUp/CVE-2018-15499

This PoC exploits CVE-2018-15499, a vulnerability in the GEARAspiWDM driver, by continuously sending IOCTL requests while manipulating memory allocations to trigger a Blue Screen of Death (BSoD). The exploit leverages a race condition between memory operations and driver interactions.

Classification
Working Poc 95%
Attack Type
Dos
Complexity
Moderate
Reliability
Reliable
Target: GEARAspiWDM driver (version not specified)
No auth needed
Prerequisites: Presence of vulnerable GEARAspiWDM driver · Local execution context on Windows
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2
Core References
Exploit, Third Party Advisory x_refsource_misc
https://downwithup.github.io/CVEPosts.html
Exploit, Third Party Advisory x_refsource_misc
https://github.com/DownWithUp/CVE-2018-15499

Scores

CVSS v3 4.7
EPSS 0.0040
EPSS Percentile 32.1%
Attack Vector LOCAL
CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H

Details

CWE
CWE-362
Status published
Products (1)
gearsoftware/gearaspiwdm 2.2.5.0
Published Aug 24, 2018
Tracked Since Feb 18, 2026