Lucene search
K

16 matches found

CVE
CVE
added 2026/05/29 2:6 a.m.30 views

CVE-2026-7480

CVE-2026-7480 : An Incorrect Permission Assignment for Critical Resource vulnerability affects the ASUS System Control Interface. A local user can elevate privileges to SYSTEM and execute arbitrary code by sending a crafted RPC call that bypasses the validation mechanism. This description is supp...

7.3CVSS6.2AI score0.00135EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/11/27 3:3 p.m.6 views

CVE-2025-12003

A path traversal vulnerability has been identified in WebDAV, which may allow unauthenticated remote attackers to impact the integrity of the device. Refer to the ' Security Update for ASUS Router Firmware' section on the ASUS Security Advisory for more information...

8.2CVSS7.1AI score0.00627EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/11/25 7:30 a.m.3 views

CVE-2025-59370

A command injection vulnerability has been identified in bwdpi. A remote, authenticated attacker could leverage this vulnerability to potentially execute arbitrary commands, leading to the device executing unintended instructions. Refer to the 'Security Update for ASUS Router Firmware' section on...

7.5CVSS7.5AI score0.00936EPSS
Exploits0References1
EUVD
EUVD
added 2025/11/25 7:28 a.m.4 views

EUVD-2025-199562

A path traversal vulnerability has been identified in WebDAV, which may allow unauthenticated remote attackers to impact the integrity of the device. Refer to the ' Security Update for ASUS Router Firmware' section on the ASUS Security Advisory for more information...

8.2CVSS6.6AI score0.00627EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/11/25 7:27 a.m.6 views

CVE-2025-59365

A stack buffer overflow vulnerability has been identified in certain router models. An authenticated attacker may trigger this vulnerability by sending a crafted request, potentially impacting the availability of the device. Refer to the ' Security Update for ASUS Router Firmware' section on the...

6.9CVSS0.00386EPSS
Exploits0References1
VulnCheck KEV
VulnCheck KEV
added 2025/11/19 12:0 a.m.4 views

VulnCheck KEV: CVE-2025-2492

An improper authentication control vulnerability exists in AiCloud. This vulnerability can be triggered by a crafted request, potentially leading to unauthorized execution of functions. Refer to the 'ASUS Router AiCloud vulnerability' section on the ASUS Security Advisory for more information...

9.2CVSS6AI score0.00968EPSS
In wildExploits1References3
NVD
NVD
added 2025/11/06 6:15 a.m.6 views

CVE-2025-9338

A improper restriction of operations within the bounds of a memory buffer exists in AsIO3.sys driver. This vulnerability can be triggered by manually executing a specially crafted process, potentially leading to local privilage escalation. For additional information, please refer to the 'Security...

7.3CVSS0.00121EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/10/14 9:46 a.m.3 views

CVE-2025-9336

A stack buffer overflow has been identified in the AsIO3.sys driver. This vulnerability can be triggered by input manipulation, may leading to a system crash BSOD or other potentially undefined execution. Refer to the 'Security Update for Armoury Crate App' section on the ASUS Security Advisory f...

6.8CVSS7.5AI score0.00135EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/10/14 9:46 a.m.3 views

CVE-2025-9337

A null pointer dereference has been identified in the AsIO3.sys driver. The vulnerability can be triggered by a specially crafted input, which may lead to a system crash BSOD. Refer to the 'Security Update for Armoury Crate App' section on the ASUS Security Advisory for more information...

6.8CVSS6.8AI score0.00121EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/10/14 8:54 a.m.5 views

CVE-2025-9968

A link following vulnerability exists in the UnifyScanner component of Armoury Crate. This vulnerability may be triggered by creating a specially crafted junction, potentially leading to local privilege escalation. For more information, please refer to section 'Security Update for Armoury Crate...

8.5CVSS6.5AI score0.00179EPSS
Exploits0References1
NVD
NVD
added 2025/10/13 10:15 a.m.5 views

CVE-2025-9336

A stack buffer overflow has been identified in the AsIO3.sys driver. This vulnerability can be triggered by input manipulation, may leading to a system crash BSOD or other potentially undefined execution. Refer to the 'Security Update for Armoury Crate App' section on the ASUS Security Advisory f...

6.8CVSS0.00135EPSS
Exploits0References1
CVE
CVE
added 2025/10/13 9:24 a.m.10 views

CVE-2025-9337

The vulnerability is a null pointer dereference in the AsIO3.sys driver used by ASUS Armoury Crate. Affected component: AsIO3.sys; root cause: null pointer dereference triggered by specially crafted input. Consequence: system crash (BSOD). References to ASUS advisory indicate impact tied to Armou...

6.8CVSS6.5AI score0.00121EPSS
Exploits0References1
CVE
CVE
added 2025/10/13 9:24 a.m.9 views

CVE-2025-9336

The CVE-2025-9336 entry concerns the ASUS Armoury Crate software, specifically the AsIO3.sys driver. Multiple sources confirm a stack buffer overflow in AsIO3.sys that can be triggered by input manipulation, potentially leading to a system crash (BSOD) or other undefined execution. Consequences n...

6.8CVSS7.2AI score0.00135EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/10/13 12:0 a.m.4 views

PT-2025-41782

Name of the Vulnerable Software and Affected Versions ASUS versions affected versions not specified Description A flaw exists in the AsIO3.sys driver where a specially crafted input can cause a null pointer dereference, potentially leading to a system crash, also known as a Blue Screen of Death...

6.8CVSS6.3AI score0.00121EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/10/13 12:0 a.m.5 views

PT-2025-41781

Name of the Vulnerable Software and Affected Versions ASUS AsIO3.sys driver affected versions not specified Description A stack buffer overflow exists in the AsIO3.sys driver. This issue is triggered by input manipulation and could result in a system crash, also known as a Blue Screen of Death...

6.8CVSS6.8AI score0.00135EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-18377

Malicious code in bioql PyPI...

8.4CVSS8.5AI score0.00508EPSS
Exploits0References6
Rows per page
Query Builder