CVE-2025-15038
CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
0th
An Out-of-Bounds Read vulnerability exists in the ASUS Business System Control Interface driver. This vulnerability can be triggered by an unprivileged local user sending a specially crafted IOCTL request, potentially leading to a disclosure of kernel information or a system crash. Refer to the "Security Update for ASUS Business System Control Interface" section on the ASUS Security Advisory for more information.
| CWE | CWE-125 |
| Vendor | asus |
| Product | asus business system control interface |
| Published | Mar 12, 2026 |
| Last Updated | Mar 12, 2026 |
Stay Ahead of the Next One
Get instant alerts for asus asus business system control interface
Be the first to know when new unknown vulnerabilities affecting asus asus business system control interface are published — delivered to Slack, Telegram or Discord.
Get Free Alerts →
Free · No credit card · 60 sec setup
Affected Versions
ASUS / ASUS Business System Control Interface
0 < 0.5.14.0