Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
ASUS EC Tool driver (aka d.sys) 1beb15c90dcf7a5234ed077833a0a3e900969b60be1d04fcebce0a9f8994bdbb, as signed by ASUS and shipped with multiple ASUS software products, contains multiple IOCTL handlers that provide raw read and write access to port I/O and MSRs via unprivileged IOCTL calls. Local users can gain privileges.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
ASUS Armoury Crate Service 安全漏洞
Vulnerability Description
ASUS Armoury Crate Service是中国华硕(ASUS)公司的一款软件实用程序。旨在提供对支持的 ROG 游戏产品的集中控制。 ASUS Armoury Crate Service 5.3.4.1之前版本存在安全漏洞,该漏洞源于通过非特权IOCTL调用提供对端口I/O和MSR的原始读写访问,本地攻击者利用该漏洞可以获得权限。
CVSS Information
N/A
Vulnerability Type
N/A