← back
CVE-2018-18535

CVE-2018-18535

EPSS 0.6%
The Asusgio low-level driver in ASUS Aura Sync v1.07.22 and earlier exposes functionality to read and write Machine Specific Registers (MSRs). This could be leveraged to execute arbitrary ring-0 code.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://packetstormsecurity.com/files/150893/ASUS-Driver-Privilege-Escalation.htmlhttp://seclists.org/fulldisclosure/2018/Dec/34https://www.secureauth.com/labs/advisories/asus-drivers-elevation-privilege-vulnerabilitieshttp://www.securityfocus.com/bid/106250