CVE-2019-18845

EUVD-2019-8544
The MsIo64.sys and MsIo32.sys drivers in Patriot Viper RGB before 1.1 allow local users (including low integrity processes) to read and write to arbitrary memory locations, and consequently gain NT AUTHORITY\SYSTEM privileges, by mapping \Device\PhysicalMemory into the calling process via ZwOpenSection and ZwMapViewOfSection.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.1 HIGH
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 24%
Affected Products (NVD)
VendorProductVersion
patriotmemoryviper_rgb_firmware
1.0
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://github.com/active-labs/Advisories/blob/master/2019/ACTIVE-2019-012.md
https://github.com/active-labs/Advisories/blob/master/2019/ACTIVE-2019-012.md