CVE-2018-18535

The Asusgio low-level driver in ASUS Aura Sync v1.07.22 and earlier exposes functionality to read and write Machine Specific Registers (MSRs). This could be leveraged to execute arbitrary ring-0 code.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:asus:aura_sync_firmware:1.07.22:*:*:*:*:*:*:*
cpe:2.3:h:asus:aura_sync:-:*:*:*:*:*:*:*

History

No history.

Information

Published : 2018-12-26 21:29

Updated : 2020-08-24 17:37


NVD link : CVE-2018-18535

Mitre link : CVE-2018-18535


JSON object : View

Products Affected

asus

  • aura_sync_firmware
  • aura_sync