An issue was discovered in GPU-Z.sys in TechPowerUp GPU-Z before 2.23.0. The vulnerable driver exposes a wrmsr instruction via an IOCTL and does not properly filter the Model Specific Register (MSR). Allowing arbitrary MSR writes can lead to Ring-0 code execution and escalation of privileges.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2020-03-25T16:35:07

Updated: 2024-08-04T20:46:44.769Z

Reserved: 2019-01-31T00:00:00

Link: CVE-2019-7245

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2020-03-25T17:15:14.263

Modified: 2024-11-21T04:47:49.867

Link: CVE-2019-7245

cve-icon Redhat

No data.