Aura Sync Firmware

aura_sync_firmware

Vendor: Asus • 3 CVEs

CVEs (3)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2018-18537 1Asus 1Aura Sync Firmware Nov 21, 2024 Dec 26, 2018 N/A· v4 5.5 MEDIUM· v3 2.1 LOW· v2 The GLCKIo low-level driver in ASUS Aura Sync v1.07.22 and earlier exposes a path to write an arbitrary DWORD to an arbitrary address.
CVE-2018-18536 1Asus 1Aura Sync Firmware Nov 21, 2024 Dec 26, 2018 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 The GLCKIo and Asusgio low-level drivers in ASUS Aura Sync v1.07.22 and earlier expose functionality to read/write data from/to IO ports. This could be leveraged in a number of ways to ultimately run code with elevated p...Show more The GLCKIo and Asusgio low-level drivers in ASUS Aura Sync v1.07.22 and earlier expose functionality to read/write data from/to IO ports. This could be leveraged in a number of ways to ultimately run code with elevated privileges.Show less
CVE-2018-18535 1Asus 1Aura Sync Firmware Nov 21, 2024 Dec 26, 2018 N/A· v4 7.8 HIGH· v3 7.2 HIGH· v2 The Asusgio low-level driver in ASUS Aura Sync v1.07.22 and earlier exposes functionality to read and write Machine Specific Registers (MSRs). This could be leveraged to execute arbitrary ring-0 code.