CVE-2023-31096 — Out-of-bounds Write in LSI Pci-sv92ex Firmware

CWE-787 — Out-of-bounds Write CWE-121 — Stack-based Buffer Overflow10 documents8 sources

Severity

7.8HIGHNVD

EPSS

0.0%

top 93.14%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Broadcom LSI Pci-sv92ex Firmware Msrc Windows 10 Version 1607 Msrc Windows 10 Version 1809 +13 more

Timeline

PublishedOct 10

Latest updateJan 14

Description

An issue was discovered in Broadcom) LSI PCI-SV92EX Soft Modem Kernel Driver through 2.2.100.1 (aka AGRSM64.sys). There is Local Privilege Escalation to SYSTEM via a Stack Overflow in RTLCopyMemory (IOCTL 0x1b2150). An attacker can exploit this to elevate privileges from a medium-integrity process to SYSTEM. This can also be used to bypass kernel-level protections such as AV or PPL, because exploit code runs with high-integrity privileges and can be used in coordinated BYOVD (bring your own vuln…

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages16 packages

▶NVDbroadcom/lsi_pci-sv92ex_firmware2.2.100.1

▶msrcmsrc/windows_server_2008

▶msrcmsrc/windows_server_2012

▶msrcmsrc/windows_server_2016

▶msrcmsrc/windows_server_2019

🔴Vulnerability Details

GHSA

GHSA-6hxc-fm22-74v5: An issue was discovered in Broadcom) LSI PCI-SV92EX Soft Modem Kernel Driver through 2↗2023-10-10

▶

📋Vendor Advisories

Microsoft

MITRE: CVE-2023-31096 Windows Agere Soft Modem Driver Elevation of Privilege Vulnerability↗2026-01-13

▶

🕵️Threat Intelligence

Krebs

Patch Tuesday, January 2026 Edition↗2026-01-14

▶

Tenable

Microsoft’s January 2026 Patch Tuesday Addresses 113 CVEs (CVE-2026-20805)↗2026-01-13

▶

Qualys

Microsoft and Adobe Patch Tuesday, January 2026 Security Update Review↗2026-01-13

▶

Bleepingcomputer

Microsoft January 2026 Patch Tuesday fixes 3 zero-days, 114 flaws↗2026-01-13

▶

Qualys

Microsoft and Adobe Patch Tuesday, January 2026 Security Update Review | Qualys↗2026-01-13

▶