ASUS EC Tool driver (aka d.sys) 1beb15c90dcf7a5234ed077833a0a3e900969b60be1d04fcebce0a9f8994bdbb, as signed by ASUS and shipped with multiple ASUS software products, contains multiple IOCTL handlers that provide raw read and write access to port I/O and MSRs via unprivileged IOCTL calls. Local users can gain privileges.
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HAsus Armoury Crate
APPAsus< 5.3.4.1
Related vulnerabilities
ASUS Armoury Crate — zapis i odczyt dowolnych plików przez sieć bez uwierzytelnienia
ASUS SetupAsusServices v1.0.5.1 in Asus Armoury Crate v5.3.4.0 contains an unquoted service path vulnerability...
ASUS Live Update — kompromitacja łańcucha dostaw (supply chain compromise)
The administrator application on ASUS GT-AC2900 devices before 3.0.0.4.386.42643 and Lyra Mini before 3.0.0.4_...
Authentication bypass w routerach ASUS z serii DSL — nieautoryzowany dostęp zdalny