Security Advisory

CVE-2025-15038

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-03-12 02:03:19

Last updated 2026-03-12 14:48:08

Assigner ASUS

State PUBLISHED

Description

An Out-of-Bounds Read vulnerability exists in the ASUS Business System Control Interface driver. This vulnerability can be triggered by an unprivileged local user sending a specially crafted IOCTL request, potentially leading to a disclosure of kernel information or a system crash. Refer to the "Security Update for ASUS Business System Control Interface" section on the ASUS Security Advisory for more information.

← Browse all CVEs View on cve.org ↗