PULSE
LIVE19signals / 24h
FEED
ransomqilin reclama a Cafar · AR · Agriculture and Food Productionransominterlock reclama a Centre for Newcomers · CA · Public Sectorransominterlock reclama a Paragon Store Fixtures · US · Manufacturingransomakira reclama a Westcoast Communication Services · Telecommunicationransomakira reclama a Nesco Bus Maintenance · Transportation/Logisticsransomm3rx reclama a suppcentersa.com · ZA · Business Servicesransomm3rx reclama a arambol.co.uk · GB · Not Foundransomincransom reclama a Kyokuto Kaihatsu Kogyo · JP · Manufacturingransomnova reclama a Phi · Not Foundransomnova reclama a Digipro · Technologyransomnova reclama a Integrated Marketing Services · Business Servicesransomkrybit reclama a eitzchaim.com · IL · Not Foundransomkrybit reclama a formasuniversales.com · MX · Business Servicesransomkrybit reclama a rehabmalaysia.com · MY · Healthcareransomqilin reclama a Cafar · AR · Agriculture and Food Productionransominterlock reclama a Centre for Newcomers · CA · Public Sectorransominterlock reclama a Paragon Store Fixtures · US · Manufacturingransomakira reclama a Westcoast Communication Services · Telecommunicationransomakira reclama a Nesco Bus Maintenance · Transportation/Logisticsransomm3rx reclama a suppcentersa.com · ZA · Business Servicesransomm3rx reclama a arambol.co.uk · GB · Not Foundransomincransom reclama a Kyokuto Kaihatsu Kogyo · JP · Manufacturingransomnova reclama a Phi · Not Foundransomnova reclama a Digipro · Technologyransomnova reclama a Integrated Marketing Services · Business Servicesransomkrybit reclama a eitzchaim.com · IL · Not Foundransomkrybit reclama a formasuniversales.com · MX · Business Servicesransomkrybit reclama a rehabmalaysia.com · MY · Healthcare
← All CVEs
CVE Watch

CVE-2018-19320

GIGABYTE Multiple Products Unspecified Vulnerability

CVSS

No CVSS

EPSS

3.6%

p88

KEV

YES

Oct 24, 2022

Exploit Today

76

0-100

Published: · Last modified:

EPSS · 30d
3.6%EPSS · 30 days3.6%
2026-06-302026-07-17
KEV catalog record

Product

GIGABYTE / Multiple Products

Vulnerability

GIGABYTE Multiple Products Unspecified Vulnerability

Added to KEV

Oct 24, 2022

Remediate by

Nov 14, 2022

Known ransomware use

Yes

Summary description

The GDrv low-level driver in GIGABYTE App Center, AORUS Graphics Engine, XTREME Gaming Engine, and OC GURU II exposes ring0 memcpy-like functionality that could allow a local attacker to take complete control of the affected system.

Required action

Apply updates per vendor instructions.

Notes

https://www.gigabyte.com/Support/Security/1801; https://nvd.nist.gov/vuln/detail/CVE-2018-19320

Related CVEs
CVECVSSEPSSKEVRExploitTitleMod.
CVE-2018-19323
94.4%
KEV78GIGABYTE Multiple Products Privilege Escalation Vulnerability
CVE-2018-19321
88.4%
KEV77GIGABYTE Multiple Products Privilege Escalation Vulnerability
CVE-2018-19322
77.0%
KEV73GIGABYTE Multiple Products Code Execution Vulnerability