CVE-2019-19452

A buffer overflow was found in Patriot Viper RGB through 1.1 when processing IoControlCode 0x80102040. Local attackers (including low integrity processes) can exploit this to gain NT AUTHORITY\SYSTEM privileges.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.8 HIGH
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 34%
VendorProductVersion
patriotmemoryviper_rgb_driver
𝑥
≤ 1.1
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://www.coresecurity.com/advisories/viper-rgb-driver-multiple-vulnerabilities
https://www.viper.patriotmemory.com
https://www.coresecurity.com/advisories/viper-rgb-driver-multiple-vulnerabilities
https://www.viper.patriotmemory.com