Asus

Aura Sync Firmware

3 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.8

CVE-2018-18535

Exploit
  • EPSS 0.13%
  • Published 26.12.2018 21:29:01
  • Last modified 21.11.2024 03:56:06

The Asusgio low-level driver in ASUS Aura Sync v1.07.22 and earlier exposes functionality to read and write Machine Specific Registers (MSRs). This could be leveraged to execute arbitrary ring-0 code.

7.8

CVE-2018-18536

Exploit
  • EPSS 0.13%
  • Published 26.12.2018 21:29:01
  • Last modified 21.11.2024 03:56:06

The GLCKIo and Asusgio low-level drivers in ASUS Aura Sync v1.07.22 and earlier expose functionality to read/write data from/to IO ports. This could be leveraged in a number of ways to ultimately run code with elevated privileges.

5.5

CVE-2018-18537

Exploit
  • EPSS 0.12%
  • Published 26.12.2018 21:29:01
  • Last modified 21.11.2024 03:56:06

The GLCKIo low-level driver in ASUS Aura Sync v1.07.22 and earlier exposes a path to write an arbitrary DWORD to an arbitrary address.