CVE-2018-18536

The GLCKIo and Asusgio low-level drivers in ASUS Aura Sync v1.07.22 and earlier expose functionality to read/write data from/to IO ports. This could be leveraged in a number of ways to ultimately run code with elevated privileges.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:asus:aura_sync_firmware:1.07.22:*:*:*:*:*:*:*
cpe:2.3:h:asus:aura_sync:-:*:*:*:*:*:*:*

History

No history.

Information

Published : 2018-12-26 21:29

Updated : 2020-08-24 17:37


NVD link : CVE-2018-18536

Mitre link : CVE-2018-18536


JSON object : View

Products Affected

asus

  • aura_sync
  • aura_sync_firmware