Security Advisory

CVE-2020-8808

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-02-07 22:23:08

Last updated 2024-08-04 10:12:10

Assigner mitre

State PUBLISHED

Description

The CorsairLLAccess64.sys and CorsairLLAccess32.sys drivers in CORSAIR iCUE before 3.25.60 allow local non-privileged users (including low-integrity level processes) to read and write to arbitrary physical memory locations, and consequently gain NT AUTHORITYSYSTEM privileges, via a function call such as MmMapIoSpace.

← Browse all CVEs View on cve.org ↗