Vulnerability: Privilege Escalation via GLCKIo and Asusgio Low-Level Drivers in ASUS Aura Sync

Vulnerability: Privilege Escalation via GLCKIo and Asusgio Low-Level Drivers in ASUS Aura Sync

CVE-2018-18536 · HIGH Severity

AV:L/AC:L/AU:N/C:C/I:C/A:C

The GLCKIo and Asusgio low-level drivers in ASUS Aura Sync v1.07.22 and earlier expose functionality to read/write data from/to IO ports. This could be leveraged in a number of ways to ultimately run code with elevated privileges.

Learn more about our Web Application Penetration Testing UK.