CVE-2025-15037
CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
0th
An Incorrect Permission Assignment vulnerability exists in the ASUS Business System Control Interface driver. This vulnerability can be triggered by an unprivileged local user sending a specially crafted IOCTL request, potentially leading to unauthorized access to sensitive hardware resources and kernel information disclosure. Refer to the "ASUS Business System Control Interface" section on the ASUS Security Advisory for more information.
| CWE | CWE-732 |
| Vendor | asus |
| Product | asus business system control interface |
| Published | Mar 12, 2026 |
| Last Updated | Mar 12, 2026 |
Stay Ahead of the Next One
Get instant alerts for asus asus business system control interface
Be the first to know when new unknown vulnerabilities affecting asus asus business system control interface are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
Affected Versions
ASUS / ASUS Business System Control Interface
0 < 0.5.14.0