Vulnerability Details CVE-2018-15499
GEAR Software products that include GEARAspiWDM.sys, 2.2.5.0, allow local users to cause a denial of service (Race Condition and BSoD on Windows) by not checking that user-mode memory is available right before writing to it. A check is only performed at the beginning of a long subroutine.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.007
EPSS Ranking 71.7%
CVSS Severity
CVSS v3 Score 4.7
CVSS v2 Score 4.7
References
Products affected by CVE-2018-15499
-
cpe:2.3:a:gearsoftware:gearaspiwdm:2.2.5.0