Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2019-17603

Ene.sys in Asus Aura Sync through 1.07.71 does not properly validate input to IOCTL 0x80102044, 0x80102050, and 0x80102054, which allows local users to cause a denial of service (system crash) or gain privileges via IOCTL requests using crafted kernel addresses that trigger memory corruption.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 44.6%
CVSS Severity
CVSS v3 Score 7.8
CVSS v2 Score 7.2
Products affected by CVE-2019-17603
  • Asus » Aura Sync » Version: N/A
    cpe:2.3:a:asus:aura_sync:-
  • Asus » Aura Sync » Version: 1.07.71
    cpe:2.3:a:asus:aura_sync:1.07.71


Products
Pricing
Contact Us

Shodan ® - All rights reserved