CVE-2026-8918
- EPSS 0.22%
- Veröffentlicht 22.06.2026 02:00:12
- Zuletzt bearbeitet 24.06.2026 05:17:30
A permissive list of allowed inputs in ASUS Armoury Crate allows a local administrator to perform arbitrary memory read/write operations or cause a system crash (BSOD) by bypassing the validation mechanism.Refer to the ' Security Update for Armoury C...
CVE-2026-8070
- EPSS 0.09%
- Veröffentlicht 29.05.2026 02:00:39
- Zuletzt bearbeitet 29.05.2026 14:46:09
Incorrect permission assignment for a critical resource in Armoury Crate allows a local user to bypass the driver’s validation mechanism, resulting in unauthorized read and write access to physical memory.Refer to the ' Security Update for Armoury C...
CVE-2025-11775
- EPSS 0.11%
- Veröffentlicht 17.12.2025 04:25:54
- Zuletzt bearbeitet 15.04.2026 00:35:42
An out-of-bounds read vulnerability has been identified in the asComSvc service. This vulnerability can be triggered by sending specially crafted requests, which may lead to a service crash or partial loss of functionality. This vulnerability only af...
CVE-2025-9338
- EPSS 0.12%
- Veröffentlicht 06.11.2025 06:15:44
- Zuletzt bearbeitet 15.04.2026 00:35:42
A improper restriction of operations within the bounds of a memory buffer exists in AsIO3.sys driver. This vulnerability can be triggered by manually executing a specially crafted process, potentially leading to local privilage escalation. For additi...
CVE-2025-9337
- EPSS 0.12%
- Veröffentlicht 13.10.2025 09:24:35
- Zuletzt bearbeitet 15.04.2026 00:35:42
A null pointer dereference has been identified in the AsIO3.sys driver. The vulnerability can be triggered by a specially crafted input, which may lead to a system crash (BSOD). Refer to the 'Security Update for Armoury Crate App' section on the ASUS...
CVE-2025-9336
- EPSS 0.14%
- Veröffentlicht 13.10.2025 09:24:04
- Zuletzt bearbeitet 15.04.2026 00:35:42
A stack buffer overflow has been identified in the AsIO3.sys driver. This vulnerability can be triggered by input manipulation, may leading to a system crash (BSOD) or other potentially undefined execution. Refer to the 'Security Update for Armoury ...
CVE-2025-9968
- EPSS 0.18%
- Veröffentlicht 13.10.2025 08:13:33
- Zuletzt bearbeitet 15.04.2026 00:35:42
A link following vulnerability exists in the UnifyScanner component of Armoury Crate. This vulnerability may be triggered by creating a specially crafted junction, potentially leading to local privilege escalation. For more information, please refer ...
CVE-2025-3464
- EPSS 0.52%
- Veröffentlicht 16.06.2025 09:06:23
- Zuletzt bearbeitet 15.04.2026 00:35:42
A race condition vulnerability exists in Armoury Crate. This vulnerability arises from a Time-of-check Time-of-use issue, potentially leading to authentication bypass. Refer to the 'Security Update for Armoury Crate App' section on the ASUS Security ...
CVE-2025-1533
- EPSS 0.27%
- Veröffentlicht 12.05.2025 09:28:12
- Zuletzt bearbeitet 15.04.2026 00:35:42
A stack buffer overflow has been identified in the AsIO3.sys driver. This vulnerability can be triggered by input manipulation, may leading to a system crash (BSOD) or other potentially undefined execution. Refer to the 'Security Update for Armoury C...
CVE-2024-12957
- EPSS 0.16%
- Veröffentlicht 23.01.2025 10:15:06
- Zuletzt bearbeitet 15.04.2026 00:35:42
A file handling command vulnerability in certain versions of Armoury Crate may result in arbitrary file deletion. Refer to the '01/23/2025 Security Update for Armoury Crate App' section on the ASUS Security Advisory for more information.