NVD disclosure day
CVE-2018-19323
Halo Surface Signal: 1 out of 5 — much less likely to be public-facing.
Certain Gigabyte software components have a driver flaw enabling unauthorized system register access. This could lead to elevated privileges for attackers with local access, posing a risk of data compromise and system control. Organizations should identify affected systems and apply vendor updates.
CVE-2018-19322
Halo Surface Signal: 1 out of 5 — much less likely to be public-facing.
Certain Gigabyte software components could allow a local attacker to execute code with elevated privileges. This presents a risk of unauthorized system access and control, potentially impacting data and operations. The vulnerability requires local access and does not need user interaction to exploit.
CVE-2018-19321
Halo Surface Signal: 1 out of 5 — much less likely to be public-facing.
A vulnerability in Gigabyte software allows local attackers to elevate privileges by accessing arbitrary physical memory. This impacts affected systems and could risk data integrity and unauthorized system control. Organizations should address this vulnerability to mitigate potential security breaches.
CVE-2018-19320
Halo Surface Signal: 1 out of 5 — much less likely to be public-facing.
A flaw in Gigabyte software drivers allows a local attacker to gain complete system control. This impacts Gigabyte App Center, AORUS Graphics Engine, XTREME Gaming Engine, and OC GURU II. The business risk involves potential system compromise and loss of data control.