Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
elevation of privilege vulnerabilities and exploits
(subscribe to this query)
7.2
CVSSv2
CVE-2018-8410
An elevation of privilege vulnerability exists when the Windows Kernel API improperly handles registry objects in memory, aka "Windows Registry Elevation of Privilege Vulnerability." This affects Windows 7, Windows Server 2012 R2, Windows RT 8.1, Windows Server 2012, Wi...
Microsoft Windows 10 1607
Microsoft Windows 8.1 -
Microsoft Windows 7 -
Microsoft Windows Rt 8.1 -
Microsoft Windows 10 1703
Microsoft Windows 10 -
Microsoft Windows Server 2008
Microsoft Windows 10 1709
Microsoft Windows 10 1803
Microsoft Windows Server 2012
Microsoft Windows Server 2016
1 EDB exploit
1 Github repository
7.2
CVSSv2
CVE-2018-19320
The GDrv low-level driver in GIGABYTE APP Center v1.05.21 and previous versions, AORUS GRAPHICS ENGINE prior to 1.57, XTREME GAMING ENGINE prior to 1.26, and OC GURU II v2.08 exposes ring0 memcpy-like functionality that could allow a local malicious user to take complete control ...
Gigabyte Oc Guru Ii 2.08
Gigabyte Aorus Graphics Engine
Gigabyte Xtreme Gaming Engine
Gigabyte App Center
9 Github repositories
4.6
CVSSv2
CVE-2018-19322
The GPCIDrv and GDrv low-level drivers in GIGABYTE APP Center v1.05.21 and previous versions, AORUS GRAPHICS ENGINE prior to 1.57, XTREME GAMING ENGINE prior to 1.26, and OC GURU II v2.08 expose functionality to read/write data from/to IO ports. This could be leveraged in a numbe...
Gigabyte Oc Guru Ii 2.08
Gigabyte Aorus Graphics Engine
Gigabyte Xtreme Gaming Engine
Gigabyte App Center
7.2
CVSSv2
CVE-2018-18536
The GLCKIo and Asusgio low-level drivers in ASUS Aura Sync v1.07.22 and previous versions expose functionality to read/write data from/to IO ports. This could be leveraged in a number of ways to ultimately run code with elevated privileges.
Asus Aura Sync Firmware 1.07.22
7.2
CVSSv2
CVE-2018-19321
The GPCIDrv and GDrv low-level drivers in GIGABYTE APP Center v1.05.21 and previous versions, AORUS GRAPHICS ENGINE prior to 1.57, XTREME GAMING ENGINE prior to 1.26, and OC GURU II v2.08 expose functionality to read and write arbitrary physical memory. This could be leveraged by...
Gigabyte Oc Guru Ii 2.08
Gigabyte Aorus Graphics Engine
Gigabyte Xtreme Gaming Engine
Gigabyte App Center
2 Github repositories
9
CVSSv2
CVE-2018-19323
The GDrv low-level driver in GIGABYTE APP Center v1.05.21 and previous versions, AORUS GRAPHICS ENGINE prior to 1.57, XTREME GAMING ENGINE prior to 1.26, and OC GURU II v2.08 exposes functionality to read and write Machine Specific Registers (MSRs).
Gigabyte Oc Guru Ii 2.08
Gigabyte Aorus Graphics Engine
Gigabyte Gigabyte App Center
Gigabyte Xtreme Gaming Engine
2 Github repositories
7.2
CVSSv2
CVE-2018-18535
The Asusgio low-level driver in ASUS Aura Sync v1.07.22 and previous versions exposes functionality to read and write Machine Specific Registers (MSRs). This could be leveraged to execute arbitrary ring-0 code.
Asus Aura Sync Firmware 1.07.22
2.1
CVSSv2
CVE-2018-18537
The GLCKIo low-level driver in ASUS Aura Sync v1.07.22 and previous versions exposes a path to write an arbitrary DWORD to an arbitrary address.
Asus Aura Sync Firmware 1.07.22
NA
CVE-2020-6930
HP has identified a potential security vulnerability in HP Sure Sense which can allow elevation of privilege.
4.6
CVSSv2
CVE-2005-4069
SunnComm MediaMax DRM 5.0.21.0, as used by Sony BMG, assigns insecure Everyone/Full Control permissions to the "SunnComm Shared" directory, which allows local users to gain privileges by modifying programs installed in that directory, such as MMX.exe.
Sunncomm Mediamax Drm 5.0.21.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
deserialization
CVE-2024-4541
CVE-2024-3080
CVE-2024-4787
log injection
CVE-2024-5967
inject
CVE-2024-30078
CVE-2024-5899
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »