Vulnerability Details CVE-2019-15664
An issue was discovered in Rivet Killer Control Center before 2.1.1352. IOCTL 0x120404 in KfeCo10X64.sys fails to validate an offset passed as a parameter during a memory operation, leading to an out-of-bounds read that can be used as part of a chain to escalate privileges (issue 2 of 2).
Exploit prediction scoring system (EPSS) score
EPSS Score 0.003
EPSS Ranking 52.2%
CVSS Severity
CVSS v3 Score 2.7
CVSS v2 Score 4.0
References
- https://github.com/fireeye/Vulnerability-Disclosures/blob/master/FEYE-2019-0008/FEYE-2019-0008.md
- https://support.killernetworking.com/downloads/ReleaseNotes/KillerSoftware_Release_Notes_2.1.1352.pdf
- https://www.killernetworking.com
- https://github.com/fireeye/Vulnerability-Disclosures/blob/master/FEYE-2019-0008/FEYE-2019-0008.md
- https://support.killernetworking.com/downloads/ReleaseNotes/KillerSoftware_Release_Notes_2.1.1352.pdf
- https://www.killernetworking.com
Products affected by CVE-2019-15664
-
cpe:2.3:a:killernetworking:killer_control_center:1.4.1466
-
cpe:2.3:a:killernetworking:killer_control_center:1.4.1474
-
cpe:2.3:a:killernetworking:killer_control_center:1.4.1492
-
cpe:2.3:a:killernetworking:killer_control_center:1.4.1494
-
cpe:2.3:a:killernetworking:killer_control_center:1.4.1503
-
cpe:2.3:a:killernetworking:killer_control_center:1.5.1608
-
cpe:2.3:a:killernetworking:killer_control_center:1.5.1618
-
cpe:2.3:a:killernetworking:killer_control_center:1.5.1757
-
cpe:2.3:a:killernetworking:killer_control_center:1.5.1784
-
cpe:2.3:a:killernetworking:killer_control_center:1.5.1804
-
cpe:2.3:a:killernetworking:killer_control_center:1.5.1805
-
cpe:2.3:a:killernetworking:killer_control_center:1.5.1822
-
cpe:2.3:a:killernetworking:killer_control_center:1.5.1847
-
cpe:2.3:a:killernetworking:killer_control_center:1.5.1852
-
cpe:2.3:a:killernetworking:killer_control_center:1.5.1859
-
cpe:2.3:a:killernetworking:killer_control_center:1.7.1016
-
cpe:2.3:a:killernetworking:killer_control_center:1.7.1023
-
cpe:2.3:a:killernetworking:killer_control_center:1.7.1030
-
cpe:2.3:a:killernetworking:killer_control_center:1.7.1034
-
cpe:2.3:a:killernetworking:killer_control_center:1.7.1053
-
cpe:2.3:a:killernetworking:killer_control_center:1.7.1080
-
cpe:2.3:a:killernetworking:killer_control_center:1.7.1089
-
cpe:2.3:a:killernetworking:killer_control_center:2.0.1134
-
cpe:2.3:a:killernetworking:killer_control_center:2.0.1159
-
cpe:2.3:a:killernetworking:killer_control_center:2.0.1170
-
cpe:2.3:a:killernetworking:killer_control_center:2.0.1175
-
cpe:2.3:a:killernetworking:killer_control_center:2.1.1281
-
cpe:2.3:a:killernetworking:killer_control_center:2.1.1295
-
cpe:2.3:a:killernetworking:killer_control_center:2.1.1299
-
cpe:2.3:a:killernetworking:killer_control_center:2.1.1313
-
cpe:2.3:a:killernetworking:killer_control_center:2.1.1334