CVE-2020-22057

EUVD-2020-14823
The WinRin0x64.sys and WinRing0.sys low-level drivers in EVGA Precision XOC version v6.2.7 were discovered to be configured with the default security descriptor which allows attackers to access sensitive components and data.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
9.1 CRITICAL
NETWORK
LOW
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 62%
Affected Products (NVD)
VendorProductVersion
evgaprecision_xoc
6.2.7
𝑥
= Vulnerable software versions
References
https://gist.github.com/hfiref0x/859f88bfa8adde49ea16fad7d58e3b37
https://gist.github.com/hfiref0x/859f88bfa8adde49ea16fad7d58e3b37