HIGH🚩 CISA KEV⚡ EXPLOIT🇵🇱 Wersja polska

CVE-2018-19322

CVSS 7.8v3.1pub. 2018-12-21upd. 2025-11-07

The GPCIDrv and GDrv low-level drivers in GIGABYTE APP Center v1.05.21 and earlier, AORUS GRAPHICS ENGINE before 1.57, XTREME GAMING ENGINE before 1.26, and OC GURU II v2.08 expose functionality to read/write data from/to IO ports. This could be leveraged in a number of ways to ultimately run code with elevated privileges.

CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
  • Gigabyte Aorus Graphics Engine

    APP
    Gigabyte
    < 1.57
  • Gigabyte App Center

    APP
    Gigabyte
    ≤ 1.05.21
  • Gigabyte Oc Guru Ii

    APP
    Gigabyte
    2.08
  • Gigabyte Xtreme Gaming Engine

    APP
    Gigabyte
    < 1.26

CISA KEV — detailsi

Vendori
GIGABYTE
Producti
Multiple Products
Added to KEVi
October 24, 2022
Remediation deadline (US Federal)i
November 14, 2022(overdue)
Ransomwarei
Active ransomware campaigns exploit this vulnerability
Required action (CISA)i

Apply updates per vendor instructions.

CISA descriptioni

The GPCIDrv and GDrv low-level drivers in GIGABYTE App Center, AORUS Graphics Engine, XTREME Gaming Engine, and OC GURU II expose functionality to read/write data from/to IO ports. This could be leveraged in a number of ways to ultimately run code with elevated privileges.

🔴
IMMEDIATE ACTION
Actively exploited in the wild (CISA KEV). Patch immediately.
☠️WYKORZYSTYWANE W RANSOMWARECISA DEADLINE: 14 listopada 2022
CWE
References

Related vulnerabilities

CVE-2018-19323CRITICAL9.8⚠ KEVten sam produkt

The GDrv low-level driver in GIGABYTE APP Center v1.05.21 and earlier, AORUS GRAPHICS ENGINE before 1.57, XTRE...

CVE-2018-19320HIGH7.8⚠ KEVten sam produkt

The GDrv low-level driver in GIGABYTE APP Center v1.05.21 and earlier, AORUS GRAPHICS ENGINE before 1.57, XTRE...

CVE-2018-19321HIGH7.8⚠ KEVten sam produkt

The GPCIDrv and GDrv low-level drivers in GIGABYTE APP Center v1.05.21 and earlier, AORUS GRAPHICS ENGINE befo...

CVE-2019-7630HIGH7.2ten sam produkt

An issue was discovered in gdrv.sys in Gigabyte APP Center before 19.0227.1. The vulnerable driver exposes a w...

CVE-2026-4415CRITICAL9.2PL ✓ten sam vendor

Gigabyte Control Center — zapis dowolnych plików prowadzący do RCE lub privilege escalation