CVE-2018-19321CISA KEVEPSS p88.2%

CVE-2018-19321GIGABYTE Multiple Products Privilege Escalation Vulnerability

GIGABYTE / Multiple Products

Description

The GPCIDrv and GDrv low-level drivers in GIGABYTE App Center, AORUS Graphics Engine, XTREME Gaming Engine, and OC GURU II expose functionality to read and write arbitrary physical memory. This could be leveraged by a local attacker to elevate privileges.

Scoring

EPSS3.67% probability of exploitation · percentile 88.2% · 2026-06-18T12:00:27Z

CISA KEV entry

Added to KEV: 2022-10-24

(incoming)1

TypeTargetConfidenceTier
KEVEntryGIGABYTE Multiple Products Privilege Escalation Vulnerabilitykev-cve-2018-193210%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
GIGABYTE Multiple Products Code Execution Vulnerability
CVE
GIGABYTE Multiple Products Unspecified Vulnerability
CVE
CVE-2026-4415
CVE
CVE-2025-20018
CVE
CVE-2025-32091
CVE
CVE-2026-22167
Sourced from NVD + CISA KEV + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.