CVE-2026-15029
Severity CVSS v4.0:
HIGH
Type:
Unavailable / Other
Publication date:
15/07/2026
Last modified:
15/07/2026
Description
Untrusted Pointer Dereference in ASUS System Control Interface v3, ASUS System Control Interface, and ASUS Business Manager allows a local administrator to perform arbitrary physical memory read and write operations via crafted IOCTL requests to the driver, bypassing OS-enforced memory protections.<br />
Refer to the &#39; <br />
Security Update for ASUS System Control Interface &#39; section on the ASUS Security Advisory for more information.
Impact
Base Score 4.0
8.40
Severity 4.0
HIGH



