Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A privilege escalation vulnerability exists in the WinRing0x64 Driver Privileged I/O Write IRPs functionality of NZXT CAM 4.8.0. A specially crafted I/O request packet (IRP) can cause increased privileges. Using the IRP 0x9c40a0dc gives a low privilege user direct access to the OUT instruction that is completely unrestrained at an elevated privilege level. An attacker can send a malicious IRP to trigger this vulnerability.
CVSS Information
N/A
Vulnerability Type
特权管理不恰当
Vulnerability Title
NZXT CAM 权限许可和访问控制问题漏洞
Vulnerability Description
NZXT CAM是美国NZXT公司的一个应用于游戏计算机的性能监控软件。该软件可用于管理计算机性能、温度、设备,确保计算机处于最佳性能。 NZXT CAM 4.8.0版本存在权限许可和访问控制问题漏洞,该漏洞源于WinRing0x64驱动程序权限I / O写入IRPs功能,一个特别制作的I O请求包(IRP)可以增加特权。攻击者可利用该漏洞可以发送恶意IRP来触发此漏洞。
CVSS Information
N/A
Vulnerability Type
N/A