Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2020-8808

The CorsairLLAccess64.sys and CorsairLLAccess32.sys drivers in CORSAIR iCUE before 3.25.60 allow local non-privileged users (including low-integrity level processes) to read and write to arbitrary physical memory locations, and consequently gain NT AUTHORITY\SYSTEM privileges, via a function call such as MmMapIoSpace.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 33.0%
CVSS Severity
CVSS v3 Score 7.8
CVSS v2 Score 7.2
Products affected by CVE-2020-8808
  • Corsair » Icue » Version: 3.12.118
    cpe:2.3:a:corsair:icue:3.12.118
  • Corsair » Icue » Version: 3.20.80
    cpe:2.3:a:corsair:icue:3.20.80
  • Corsair » Icue » Version: 3.23.66
    cpe:2.3:a:corsair:icue:3.23.66


Contact Us

Shodan ® - All rights reserved