Lucene search
K

CVE-2018-18536

🗓️ 26 Dec 2018 20:00:00Reported by mitreType 
cve
 cve
🔗 web.nvd.nist.gov📰️ 1 Media mentions👁 52 Views🌐 WEB

ASUS Aura Sync v1.07.22 and earlier low-level drivers allow arbitrary code executio

Related
Detection
Refs
Paths
Social
ReporterTitlePublishedViews
Family
0day.today
ASUS Aura Sync versions 1.07.22 Driver Privilege Escalation Exploit
23 Dec 201800:00
zdt
CNVD
ASUS Aura Sync Arbitrary Code Execution Vulnerability
21 Dec 201800:00
cnvd
Cvelist
CVE-2018-18536
26 Dec 201820:00
cvelist
EUVD
EUVD-2018-10258
7 Oct 202500:30
euvd
NVD
CVE-2018-18536
26 Dec 201821:29
nvd
OSV
CVE-2018-18536
26 Dec 201821:29
osv
Packet Storm
ASUS Driver Privilege Escalation
21 Dec 201800:00
packetstorm
Prion
Code injection
26 Dec 201821:29
prion
NVD
Node
ParameterPositionPathDescriptionCWE
IOCTL_GLCKIO_READPORTpath\\.\GLCKIoExposed IOCTLs on GLCKIo allowing arbitrary memory write and IO port access, enabling privilege escalation.CWE-782
IOCTL_GLCKIO_WRITEPORTpath\\.\GLCKIoExposed IOCTLs on GLCKIo allowing arbitrary memory write and IO port access, enabling privilege escalation.CWE-782
IOCTL_GLCKIO_VMWRITEpath\\.\GLCKIoExposed IOCTLs on GLCKIo allowing arbitrary memory write and IO port access, enabling privilege escalation.CWE-782
IOCTL_ASIO_PORTREADBpath\\.\AsusgioASUS Aura Sync driver exposes PMIO and MSR IOCTLs enabling privileged IO and register operations for code execution.CWE-782
IOCTL_ASIO_PORTWRITEBpath\\.\AsusgioASUS Aura Sync driver exposes PMIO and MSR IOCTLs enabling privileged IO and register operations for code execution.CWE-782
IOCTL_ASIO_RDMSRpath\\.\AsusgioASUS Aura Sync driver exposes PMIO and MSR IOCTLs enabling privileged IO and register operations for code execution.CWE-782
IOCTL_ASIO_WRMSRpath\\.\AsusgioASUS Aura Sync driver exposes PMIO and MSR IOCTLs enabling privileged IO and register operations for code execution.CWE-782

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

17 Jun 2026 01:47Current
7.5High risk
Vulners AI Score7.5
CVSS 27.2
CVSS 37.8
EPSS0.00575
52