Back to CVE List

CVE-2025-15038

Vulnerability Description

An Out-of-Bounds
Read vulnerability exists in the ASUS Business System
Control Interface driver. This vulnerability can be triggered by an unprivileged local user
sending a specially crafted IOCTL  request, potentially leading
to a disclosure of
kernel information or a system crash. Refer to the "Security Update for ASUS 
Business System Control Interface" section on the ASUS Security Advisory for more information.

Vulnerability Details

Published Date
Last Modified
CWE ID
CWE-125
Source
NVD
Vendor
ASUS
Product
ASUS Business System Control Interface

External References

Discussion (0)

Add Comment

No comments yet. Be the first!