Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

4613 matches found

OSV
OSVadded 2018/12/26 9:29 p.m.3 views

CVE-2018-18537

The GLCKIo low-level driver in ASUS Aura Sync v1.07.22 and earlier exposes a path to write an arbitrary DWORD to an arbitrary address...

5.5CVSS5.9AI score0.00527EPSS
Exploits3References4
OSV
OSVadded 2018/12/26 9:29 p.m.2 views

CVE-2018-18535

The Asusgio low-level driver in ASUS Aura Sync v1.07.22 and earlier exposes functionality to read and write Machine Specific Registers MSRs. This could be leveraged to execute arbitrary ring-0 code...

7.8CVSS6AI score0.00575EPSS
Exploits3References4
NVD
NVDadded 2018/12/26 9:29 p.m.18 views

CVE-2018-18536

The GLCKIo and Asusgio low-level drivers in ASUS Aura Sync v1.07.22 and earlier expose functionality to read/write data from/to IO ports. This could be leveraged in a number of ways to ultimately run code with elevated privileges...

7.8CVSS7.6AI score0.00575EPSS
Exploits3References4
NVD
NVDadded 2018/12/26 9:29 p.m.27 views

CVE-2018-18535

The Asusgio low-level driver in ASUS Aura Sync v1.07.22 and earlier exposes functionality to read and write Machine Specific Registers MSRs. This could be leveraged to execute arbitrary ring-0 code...

7.8CVSS7.8AI score0.00575EPSS
Exploits3References4
NVD
NVDadded 2018/12/26 9:29 p.m.28 views

CVE-2018-18537

The GLCKIo low-level driver in ASUS Aura Sync v1.07.22 and earlier exposes a path to write an arbitrary DWORD to an arbitrary address...

5.5CVSS5.5AI score0.00527EPSS
Exploits3References4
Prion
Prionadded 2018/12/26 9:29 p.m.22 views

Path traversal

The GLCKIo low-level driver in ASUS Aura Sync v1.07.22 and earlier exposes a path to write an arbitrary DWORD to an arbitrary address...

2.1CVSS5.6AI score0.00527EPSS
Exploits3References4Affected Software1
Prion
Prionadded 2018/12/26 9:29 p.m.22 views

Code injection

The GLCKIo and Asusgio low-level drivers in ASUS Aura Sync v1.07.22 and earlier expose functionality to read/write data from/to IO ports. This could be leveraged in a number of ways to ultimately run code with elevated privileges...

7.2CVSS7.5AI score0.00575EPSS
Exploits3References4Affected Software1
Prion
Prionadded 2018/12/26 9:29 p.m.17 views

Code injection

The Asusgio low-level driver in ASUS Aura Sync v1.07.22 and earlier exposes functionality to read and write Machine Specific Registers MSRs. This could be leveraged to execute arbitrary ring-0 code...

7.2CVSS7.7AI score0.00575EPSS
Exploits3References4Affected Software1
Cvelist
Cvelistadded 2018/12/26 8:0 p.m.19 views

CVE-2018-18536

The GLCKIo and Asusgio low-level drivers in ASUS Aura Sync v1.07.22 and earlier expose functionality to read/write data from/to IO ports. This could be leveraged in a number of ways to ultimately run code with elevated privileges...

7.6AI score0.00575EPSS
Exploits3References4
Cvelist
Cvelistadded 2018/12/26 8:0 p.m.24 views

CVE-2018-18537

The GLCKIo low-level driver in ASUS Aura Sync v1.07.22 and earlier exposes a path to write an arbitrary DWORD to an arbitrary address...

5.6AI score0.00527EPSS
Exploits3References4
CVE
CVEadded 2018/12/26 8:0 p.m.51 views

CVE-2018-18535

CVE-2018-18535 affects the Asusgio low-level driver in ASUS Aura Sync versions 1.07.22 and earlier. The driver exposes functionality to read and write Machine Specific Registers (MSRs), which can be leveraged to execute arbitrary ring-0 code via local access. The vulnerability is described as a l...

7.8CVSS7.7AI score0.00575EPSS
Exploits3References4Affected Software1
Cvelist
Cvelistadded 2018/12/26 8:0 p.m.23 views

CVE-2018-18535

The Asusgio low-level driver in ASUS Aura Sync v1.07.22 and earlier exposes functionality to read and write Machine Specific Registers MSRs. This could be leveraged to execute arbitrary ring-0 code...

7.8AI score0.00575EPSS
Exploits3References4
CVE
CVEadded 2018/12/26 8:0 p.m.48 views

CVE-2018-18536

The CVE-2018-18536 issue concerns ASUS Aura Sync’s GLCKIo and Asusgio low-level drivers (version 1.07.22 and earlier). The drivers expose functionality to read/write data from/to IO ports, which can be leveraged on a local system to run code with elevated privileges. Documented impact is local co...

7.8CVSS7.5AI score0.00575EPSS
Exploits3References4Affected Software1
CVE
CVEadded 2018/12/26 8:0 p.m.50 views

CVE-2018-18537

CVE-2018-18537 affects the GLCKIo low-level driver in ASUS Aura Sync prior to v1.07.22, where an exposed IOCTL path permits writing an arbitrary DWORD to an arbitrary address due to insufficient access control. This enables local privilege escalation by manipulating kernel memory. Documented impa...

5.5CVSS5.5AI score0.00527EPSS
Exploits3References4Affected Software1
CNVD
CNVDadded 2018/12/25 12:0 a.m.2 views

ASUS Aura Sync Arbitrary Code Execution Vulnerability

ASUS Aura Sync is a suite of lighting management software from ASUS. An arbitrary code execution vulnerability exists in ASUS Aura Sync version 1.07.22. A local attacker can exploit this vulnerability to execute arbitrary ring-0 code...

7.8CVSS7.9AI score0.00575EPSS
Exploits3References1
CNVD
CNVDadded 2018/12/24 12:0 a.m.2 views

ASUS Aura Sync Arbitrary Code Execution Vulnerability

ASUS Aura Sync is a suite of lighting management software from ASUS. An arbitrary code execution vulnerability exists in ASUS Aura Sync version 1.07.22. A local attacker can exploit this vulnerability to write an arbitrary DWORD to an arbitrary address...

5.5CVSS7.6AI score0.00527EPSS
Exploits3References1
0day.today
0day.todayadded 2018/12/23 12:0 a.m.377 views

ASUS Aura Sync versions 1.07.22 Driver Privilege Escalation Exploit

Multiple vulnerabilities were found in the GLCKIo and Asusgio drivers installed by ASUS Aura Sync, which could allow a local attacker to elevate privileges. ASUS Aura Sync versions 1.07.22 and below are affected. ASUS Drivers Elevation of Privilege Vulnerabilities 1. Advisory Information Title:...

1AI score0.00575EPSS
Exploits5
CNVD
CNVDadded 2018/12/21 12:0 a.m.3 views

ASUS Aura Sync Arbitrary Code Execution Vulnerability

ASUS Aura Sync is a suite of lighting management software from ASUS. An arbitrary code execution vulnerability exists in ASUS Aura Sync version 1.07.22, which can be exploited by a local attacker to execute code with elevated privileges...

7.8CVSS7.8AI score0.00575EPSS
Exploits3References1
CNVD
CNVDadded 2018/12/17 12:0 a.m.2 views

Immedia Semiconductor BlinkForHome Sync Module Denial of Service Vulnerability

Immedia Semiconductor BlinkForHome Sync Module is a synchronization module for use in home security camera systems from Immedia Semiconductor. A denial of service vulnerability exists in Immedia Semiconductor BlinkForHome Sync Module version 2.10.4 and prior versions, which can be exploited by an...

6.5CVSS6.7AI score0.00737EPSS
Exploits1References1
OSV
OSVadded 2018/12/15 6:29 a.m.2 views

CVE-2018-20161

A design flaw in the BlinkForHome aka Blink For Home Sync Module 2.10.4 and earlier allows attackers to disable cameras via Wi-Fi, because incident clips triggered by the motion sensor are not saved if the attacker's traffic such as Dot11Deauth successfully disconnects the Sync Module from the...

6.5CVSS5.8AI score0.00737EPSS
Exploits1References1
Rows per page
Query Builder