cvedb.io
CVE-2018-18536
HIGH · CVSS 7.8
EPSS exploitation probability: 0%
Published 2018-12-26T21:29:01.480 · Last modified 2026-06-17T01:47:28.087

Summary

The GLCKIo and Asusgio low-level drivers in ASUS Aura Sync v1.07.22 and earlier expose functionality to read/write data from/to IO ports. This could be leveraged in a number of ways to ultimately run code with elevated privileges.

Affected products

asus — aura_sync_firmware

Does this affect you?

Add your gear to cvedb and we'll alert you only when asus ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.