Vulnerabilities > CVE-2020-15368 - Unspecified vulnerability in Asrock RGB Driver Firmware

CVSS 5.5 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

NONE

Integrity impact

HIGH

Availability impact

NONE

local

low complexity

asrock

NVD

Published: 2020-06-29

Updated: 2024-04-03

Summary

AsrDrv103.sys in the ASRock RGB Driver does not properly restrict access from user space, as demonstrated by triggering a triple fault via a request to zero CR3.

Vulnerable Configurations

Part	Description	Count
OS	Asrock Asrock RGB Driver Firmware -	1
Hardware	Asrock Asrock RGB Driver -	1

References

https://codetector.org/post/asrock_rgb_driver/
https://github.com/stong/CVE-2020-15368?tab=readme-ov-file

Summary

Vulnerable Configurations

Related news

References