← back
CVE-2018-18536

CVE-2018-18536

EPSS 0.6%
The GLCKIo and Asusgio low-level drivers in ASUS Aura Sync v1.07.22 and earlier expose functionality to read/write data from/to IO ports. This could be leveraged in a number of ways to ultimately run code with elevated privileges.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://packetstormsecurity.com/files/150893/ASUS-Driver-Privilege-Escalation.htmlhttp://seclists.org/fulldisclosure/2018/Dec/34https://www.secureauth.com/labs/advisories/asus-drivers-elevation-privilege-vulnerabilitieshttp://www.securityfocus.com/bid/106250