CVE-2026-13585
Gravedad CVSS v4.0:
ALTA
Tipo:
CWE-226
Información sensible no eliminada antes de su liberación
Fecha de publicación:
15/07/2026
Última modificación:
15/07/2026
Descripción
*** Pendiente de traducción *** Allocation of Resources Without Limits and Throttling and Sensitive Information in Resource Not Removed Before Reuse in the ASUS System Control Interface driver and ASUS Business Manager allow a local administrator to disclose sensitive information via crafted IOCTL requests, which, in severe cases, may lead to a Denial of Service (DoS) on the system.<br />
Refer to the &#39; <br />
Security Update for ASUS System Control Interface &#39; section on the ASUS Security Advisory for more information.
Impacto
Puntuación base 4.0
8.20
Gravedad 4.0
ALTA



