Vulnerability: Unprivileged User Can Perform Direct Physical Memory Read/Write in HWiNFO AMD64 Kernel Driver

CVE-2018-8061 · LOW Severity

AV:L/AC:L/AU:N/C:P/I:P/A:N

HWiNFO AMD64 Kernel driver version 8.98 and lower allows an unprivileged user to send IOCTL 0x85FE2608 to the device driver with the HWiNFO32 symbolic device name, resulting in direct physical memory read or write.

Learn more about our Physical Security Assessment.