CVE-2018-19523

MEDIUM

DriverAgent 2.2015.7.14 - Buffer Overflow

Title source: llm

Description

DriverAgent 2.2015.7.14, which includes DrvAgent64.sys 1.0.0.1, allows a user to send an IOCTL (0x80002068) with a user defined buffer size. If the size of the buffer is less than 512 bytes, then the driver will overwrite the next pool header if there is one next to the user buffer's pool.

References (2)

Core 2

Core References

Third Party Advisory

https://downwithup.github.io/CVEPosts.html

Broken Link x_refsource_misc

https://blog.securityevaluators.com/vulnerabilities-in-terramaster-tos-3-1-03-fb99cf88b86ahttps://downwithup.github.io/CVEPosts.html

Scores

CVSS v3 5.5

EPSS 0.0032

EPSS Percentile 23.6%

Attack Vector LOCAL

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

Details

CWE

CWE-119

Status published

Products (1)

driveagent/driveagent 2.2015.7.14

Published Jan 03, 2019

Tracked Since Feb 18, 2026