GIGABYTE MacroHub Local Privilege Escalation Vulnerability
Vulnerability
A local privilege escalation vulnerability has been identified in the GIGABYTE MacroHub utility, specifically in version 2.3.0 and likely earlier releases. This vulnerability allows authenticated local attackers to execute arbitrary code with SYSTEM privileges. The issue arises because the MacroHub application improperly handles privileges when launching external applications, particularly through the user interface. As a result, a standard user can initiate a browser with full SYSTEM rights, potentially leading to unauthorized access and control over the affected system.
Impact
Exploitation of this vulnerability allows local users to escalate privileges to the SYSTEM level on Windows, enabling them to execute arbitrary code with elevated rights.
Remediation
GIGABYTE has released version 2.3.2 of the MacroHub utility, which addresses this vulnerability by removing the affected code. Users are advised to upgrade to this version or later. The update is available on the GIGABYTE support website.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.