CVE-2023-31096

high

Description

An issue was discovered in Broadcom) LSI PCI-SV92EX Soft Modem Kernel Driver through 2.2.100.1 (aka AGRSM64.sys). There is Local Privilege Escalation to SYSTEM via a Stack Overflow in RTLCopyMemory (IOCTL 0x1b2150). An attacker can exploit this to elevate privileges from a medium-integrity process to SYSTEM. This can also be used to bypass kernel-level protections such as AV or PPL, because exploit code runs with high-integrity privileges and can be used in coordinated BYOVD (bring your own vulnerable driver) ransomware campaigns.

References

https://www.theregister.com/2026/01/14/patch_tuesday_january_2026/

https://www.infosecurity-magazine.com/news/microsoft-three-zerodays-busy/

https://thehackernews.com/2026/01/microsoft-fixes-114-windows-flaws-in.html

https://securityaffairs.com/186888/hacking/microsoft-patch-tuesday-security-updates-for-january-2026-fixed-actively-exploited-zero-day.html

https://www.securityweek.com/microsoft-patches-exploited-windows-zero-day-111-other-vulnerabilities/

https://www.tenable.com/blog/microsofts-january-2026-patch-tuesday-addresses-113-cves-cve-2026-20805

https://www.broadcom.com

https://cschwarz1.github.io/posts/0x04/

Details

Source: Mitre, NVD

Published: 2023-10-10

Updated: 2023-10-18

Risk Information

CVSS v2

Base Score: 6.8

Vector: CVSS2#AV:L/AC:L/Au:S/C:C/I:C/A:C

Severity: Medium

CVSS v3

Base Score: 7.8

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Severity: High

EPSS

EPSS: 0.00049