Vulnerabilities > Patriotmemory > Viper RGB Firmware
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-03-06 | CVE-2020-9756 | Unspecified vulnerability in Patriotmemory Viper RGB Firmware 1.0/1.1 Patriot Viper RGB Driver 1.1 and prior exposes IOCTL and allows insufficient access control. | 7.8 |
| 2019-11-09 | CVE-2019-18845 | Improper Privilege Management vulnerability in Patriotmemory Viper RGB Firmware 1.0 The MsIo64.sys and MsIo32.sys drivers in Patriot Viper RGB before 1.1 allow local users (including low integrity processes) to read and write to arbitrary memory locations, and consequently gain NT AUTHORITY\SYSTEM privileges, by mapping \Device\PhysicalMemory into the calling process via ZwOpenSection and ZwMapViewOfSection. | 7.1 |