CVE-2018-19322

CVE Published	2018-12-21
Related CWE(s)	CWE-749: Exposed Dangerous Method or Function
Related Vendor(s)	gigabyte
Related Product(s)	app_center, oc_guru_ii, xtreme_gaming_engine, aorus_graphics_engine
Exploitation Reported (CISA KEV)	2022-10-24
CVSS 3 Base Score	7.8 (HIGH)
CVSS 3 Attack Complexity	LOW
CVSS 3 Attack Vector	LOCAL

The GPCIDrv and GDrv low-level drivers in GIGABYTE APP Center v1.05.21 and earlier, AORUS GRAPHICS ENGINE before 1.57, XTREME GAMING ENGINE before 1.26, and OC GURU II v2.08 expose functionality to read/write data from/to IO ports. This could be leveraged in a number of ways to ultimately run code with elevated privileges.

Cyber Threat Graph Context

Explore how this CVE relates to the wider threat graph

Associated CAPEC Patterns

WebView Injection (CAPEC-500)

An adversary, through a previously installed malicious application, injects code into the context of a web page displayed by a WebView component. Through the injected code, an adversary is able to manipulate the DOM tree and cookies of the page, expose sensitive information, and can launch attacks against the web application from within the web page.

References

CVE-2018-19322

Cyber Threat Graph Context

Associated CAPEC Patterns

WebView Injection (CAPEC-500)

References

CVE.org

NIST National Vulnerability Database

CISA Known Exploited Vulnerabilities