CVE-2018-19323

CRITICAL KEV RANSOMWARE

GIGABYTE APP Center <v1.05.21 - Info Disclosure

Title source: llm

Description

The GDrv low-level driver in GIGABYTE APP Center v1.05.21 and earlier, AORUS GRAPHICS ENGINE before 1.57, XTREME GAMING ENGINE before 1.26, and OC GURU II v2.08 exposes functionality to read and write Machine Specific Registers (MSRs).

Exploits (1)

nomisec WORKING POC

by brokendreamsclub · local

https://github.com/brokendreamsclub/CVE-2018-19323

View Code ZIP pw:eip

References (6)

[Exploit, Mailing List, Third Party Advisory] http://seclists.org/fulldisclosure/2018/Dec/39

[Broken Link, Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/106252

[Vendor Advisory] https://www.gigabyte.com/Support/Security/1801

[Product] https://www.gigabyte.com/tw/Support/Utility/Graphics-Card

[Broken Link, Exploit, Third Party Advisory] https://www.secureauth.com/labs/advisories/gigabyte-drivers-elevation-privilege-vulnerabilities

[US Government Resource] https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2018-19323

Scores

CVSS v3 9.8

EPSS 0.1472

EPSS Percentile 94.5%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CISA KEV 2022-10-24

VulnCheck KEV 2022-10-24

InTheWild.io 2021-12-13

ENISA EUVD EUVD-2018-11021

Ransomware Use Confirmed

Status published

Products (4)

gigabyte/aorus_graphics_engine < 1.57

gigabyte/gigabyte_app_center < 1.05.21

gigabyte/oc_guru_ii 2.08

gigabyte/xtreme_gaming_engine < 1.26

Published Dec 21, 2018

KEV Added Oct 24, 2022

Tracked Since Feb 18, 2026