Vulners
Lucene search
CVE-2018-18536
🗓️ 26 Dec 2018 20:00:00Reported by mitreType 
cve🔗 web.nvd.nist.gov📰️ 1 Media mentions👁 50 Views🌐 WEB
| Reporter | Title | Published | Views | Family All 7 |
|---|---|---|---|---|
 | ASUS Aura Sync versions 1.07.22 Driver Privilege Escalation Exploit | 23 Dec 201800:00 | – | zdt |
 | ASUS Aura Sync Arbitrary Code Execution Vulnerability | 21 Dec 201800:00 | – | cnvd |
 | CVE-2018-18536 | 26 Dec 201820:00 | – | cvelist |
 | EUVD-2018-10258 | 7 Oct 202500:30 | – | euvd |
 | CVE-2018-18536 | 26 Dec 201821:29 | – | nvd |
 | ASUS Driver Privilege Escalation | 21 Dec 201800:00 | – | packetstorm |
 | Code injection | 26 Dec 201821:29 | – | prion |
Node
| Source | Link |
|---|---|
| securityfocus | www.securityfocus.com/bid/106250 |
| packetstormsecurity | www.packetstormsecurity.com/files/150893/ASUS-Driver-Privilege-Escalation.html |
| seclists | www.seclists.org/fulldisclosure/2018/Dec/34 |
| secureauth | www.secureauth.com/labs/advisories/asus-drivers-elevation-privilege-vulnerabilities |
| Parameter | Position | Path | Description | CWE |
|---|---|---|---|---|
| port | path | \\.\GLCKIo | Exposed IOCTLs for GLCKIo to perform PMIO read/write on IO ports (vulnerable to privilege escalation) | CWE-782 |
| value | path | \\.\GLCKIo | Exposed IOCTLs for GLCKIo to perform PMIO read/write on IO ports (vulnerable to privilege escalation) | CWE-782 |
| IOCTL_GLCKIO_READPORT | path | \\.\GLCKIo | Exposed IOCTLs for GLCKIo to perform PMIO read/write on IO ports (vulnerable to privilege escalation) | CWE-782 |
| IOCTL_GLCKIO_WRITEPORT | path | \\.\GLCKIo | Exposed IOCTLs for GLCKIo to perform PMIO read/write on IO ports (vulnerable to privilege escalation) | CWE-782 |
| port | path | \\.\Asusgio | Exposed PMIO port read/write via Asusgio driver (vulnerable to privilege escalation) | CWE-782 |
| value | path | \\.\Asusgio | Exposed PMIO port read/write via Asusgio driver (vulnerable to privilege escalation) | CWE-782 |
| IOCTL_ASIO_PORTREADB | path | \\.\Asusgio | Exposed PMIO port read/write via Asusgio driver (vulnerable to privilege escalation) | CWE-782 |
| IOCTL_ASIO_PORTWRITEB | path | \\.\Asusgio | Exposed PMIO port read/write via Asusgio driver (vulnerable to privilege escalation) | CWE-782 |
| rid | request body | \\.\GLCKIo | GLCKIo IOCTL_VMWRITE path enabling arbitrary DWORD write to an address (arbitrary write) | CWE-782 |
| dest | request body | \\.\GLCKIo | GLCKIo IOCTL_VMWRITE path enabling arbitrary DWORD write to an address (arbitrary write) | CWE-782 |
10
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
17 Jun 2026 01:47Current
7.5High risk
Vulners AI Score7.5
CVSS 27.2
CVSS 37.8
EPSS0.00575