QwikSec

Security Database

CVE

CWE

Training

CVE-2018-19321

Published: Dec 21, 2018

Modified: Oct 21, 2025

PUBLISHED

Description

The GPCIDrv and GDrv low-level drivers in GIGABYTE APP Center v1.05.21 and earlier, AORUS GRAPHICS ENGINE before 1.57, XTREME GAMING ENGINE before 1.26, and OC GURU II v2.08 expose functionality to read and write arbitrary physical memory. This could be leveraged by a local attacker to elevate privileges.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

20181221 [CORE-2018-0007] - GIGABYTE Driver Elevation of Privilege Vulnerabilities

mailing-list

x_refsource_FULLDISC

https://www.secureauth.com/labs/advisories/gigabyte-drivers-elevation-privilege-vulnerabilities

x_refsource_MISC

vdb-entry

x_refsource_BID

https://www.gigabyte.com/Support/Security/1801

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.