Main Vulnerability Database Exploits ID:10551 - Exploit for Improper Privilege Management in NZXT CAM - CVE-2020-13519

ID:10551 - Exploit for Improper Privilege Management in NZXT CAM - CVE-2020-13519

Published: October 9, 2024

Vulnerability identifier: #VU49075

Vulnerability risk: Low

CVE-ID: CVE-2020-13519

CWE-ID: CWE-269

Exploitation vector: Local access

Vulnerable software:
NZXT CAM

Link to public exploit:

https://github.com/SpiralBL0CK/poc-for-CVE-2020-13519-still-under-construction-

Vulnerability description

The vulnerability allows a local user to escalate privileges.

The vulnerability exists due to improper privilege management in the WinRing0x64 Driver IRP 0x9c402088 functionality. A local user can send a specially crafted I/O request packet (IRP), access the "writemsr" function and escalate privileges.

Remediation

Install updates from vendor's website.

ID:10551 - Exploit for Improper Privilege Management in NZXT CAM - CVE-2020-13519

Link to public exploit:

Vulnerability description

Remediation

Please verify you're human