CVE-2019-19452

EUVD-2019-9072
A buffer overflow was found in Patriot Viper RGB through 1.1 when processing IoControlCode 0x80102040. Local attackers (including low integrity processes) can exploit this to gain NT AUTHORITY\SYSTEM privileges.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.8 HIGH
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 32%
Affected Products (NVD)
VendorProductVersion
patriotmemoryviper_rgb_driver
𝑥
≤ 1.1
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://www.coresecurity.com/advisories/viper-rgb-driver-multiple-vulnerabilities
https://www.viper.patriotmemory.com
https://www.coresecurity.com/advisories/viper-rgb-driver-multiple-vulnerabilities
https://www.viper.patriotmemory.com