Vulnerabilities > CVE-2018-18537 - Unspecified vulnerability in Asus Aura Sync Firmware 1.07.22

047910
CVSS 2.1 - LOW
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
PARTIAL
Availability impact
NONE
local
low complexity
asus

Summary

The GLCKIo low-level driver in ASUS Aura Sync v1.07.22 and earlier exposes a path to write an arbitrary DWORD to an arbitrary address.

Vulnerable Configurations

Part Description Count
OS
Asus
1
Hardware
Asus
1

Packetstorm

data sourcehttps://packetstormsecurity.com/files/download/150893/CORE-2017-0012.txt
idPACKETSTORM:150893
last seen2018-12-25
published2018-12-21
reporterCore Security Technologies
sourcehttps://packetstormsecurity.com/files/150893/ASUS-Driver-Privilege-Escalation.html
titleASUS Driver Privilege Escalation