ID CVE-2020-15368
Summary AsrDrv103.sys in the ASRock RGB Driver does not properly restrict access from user space, as demonstrated by triggering a triple fault via a request to zero CR3.
References
Vulnerable Configurations
  • cpe:2.3:o:asrock:rgb_driver_firmware:-:*:*:*:*:*:*:*
    cpe:2.3:o:asrock:rgb_driver_firmware:-:*:*:*:*:*:*:*
  • cpe:2.3:h:asrock:rgb_driver:-:*:*:*:*:*:*:*
    cpe:2.3:h:asrock:rgb_driver:-:*:*:*:*:*:*:*
CVSS
Base: 2.1
Impact:
Exploitability:
CWE NVD-CWE-noinfo
CAPEC
Access
VectorComplexityAuthentication
LOCAL LOW NONE
Impact
ConfidentialityIntegrityAvailability
NONE PARTIAL NONE
Last major update 29-06-2020 - 21:15
Published 29-06-2020 - 21:15
Last modified 09-07-2020 - 14:01
Back to Top