VYPR
Vendor

ASRock

Products
6
CVEs
6
Across products
17
Status
Private

Products

6

Recent CVEs

6
  • CVE-2020-14032CriJul 23, 2021
    risk 0.64cvss 9.8epss 0.02

    ASRock 4x4 BOX-R1000 before BIOS P1.40 allows privilege escalation via code execution in the SMM.

  • CVE-2018-10712HigOct 30, 2018
    risk 0.54cvss 7.8epss 0.01

    The AsrDrv101.sys and AsrDrv102.sys low-level drivers in ASRock RGBLED before v1.0.35.1, A-Tuning before v3.0.210, F-Stream before v3.0.210, and RestartToUEFI before v1.0.6.2 expose functionality to read/write data from/to IO ports. This could be leveraged in a number of ways to…

  • CVE-2018-10711HigOct 30, 2018
    risk 0.54cvss 7.8epss 0.02

    The AsrDrv101.sys and AsrDrv102.sys low-level drivers in ASRock RGBLED before v1.0.35.1, A-Tuning before v3.0.210, F-Stream before v3.0.210, and RestartToUEFI before v1.0.6.2 expose functionality to read and write Machine Specific Registers (MSRs). This could be leveraged to…

  • CVE-2018-10709HigOct 30, 2018
    risk 0.54cvss 7.8epss 0.01

    The AsrDrv101.sys and AsrDrv102.sys low-level drivers in ASRock RGBLED before v1.0.35.1, A-Tuning before v3.0.210, F-Stream before v3.0.210, and RestartToUEFI before v1.0.6.2 expose functionality to read and write CR register values. This could be leveraged in a number of ways…

  • CVE-2018-10710HigOct 30, 2018
    risk 0.49cvss 7.1epss 0.01

    The AsrDrv101.sys and AsrDrv102.sys low-level drivers in ASRock RGBLED before v1.0.35.1, A-Tuning before v3.0.210, F-Stream before v3.0.210, and RestartToUEFI before v1.0.6.2 expose functionality to read and write arbitrary physical memory. This could be leveraged by a local…

  • CVE-2020-15368MedJun 29, 2020
    risk 0.36cvss 5.5epss 0.01

    AsrDrv103.sys in the ASRock RGB Driver does not properly restrict access from user space, as demonstrated by triggering a triple fault via a request to zero CR3.