Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An information disclosure vulnerability exists in the WinRing0x64 Driver Privileged I/O Read IRPs functionality of NZXT CAM 4.8.0. A specially crafted I/O request packet (IRP) using the IRP 0x9c4060d0 gives a low privilege user direct access to the IN instruction that is completely unrestrained at an elevated privilege level. An attacker can send a malicious IRP to trigger this vulnerability.
CVSS Information
N/A
Vulnerability Type
特权管理不恰当
Vulnerability Title
NZXT CAM 信息泄露漏洞
Vulnerability Description
NZXT CAM是美国NZXT公司的一个应用于游戏计算机的性能监控软件。该软件可用于管理计算机性能、温度、设备,确保计算机处于最佳性能。 NZXT CAM 4.8.0 存在信息泄露漏洞,该漏洞源于WinRing0x64驱动程序特权I O Read IRPs功能,使用IRP 0x9c4060d0的一个特别制作的I O请求包(IRP)给低特权用户直接访问IN指令,这在一个提升的特权级别上完全不受限制。攻击者可利用该漏洞可以发送恶意IRP来触发此漏洞。
CVSS Information
N/A
Vulnerability Type
N/A