Home

Description

An out-of-bounds read vulnerability has been identified in the asComSvc service. This vulnerability can be triggered by sending specially crafted requests, which may lead to a service crash or partial loss of functionality. This vulnerability only affects ASUS motherboard series products. Refer to the 'Security Update for Armoury Crate App' section on the ASUS Security Advisory for more information.

PUBLISHED Reserved 2025-10-15 | Published 2025-12-17 | Updated 2025-12-17 | Assigner ASUS




MEDIUM: 4.8CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N

Problem types

CWE-125 Out-of-bounds Read

Product status

Default status
unaffected

v6.3.4 and earlier
affected

Credits

Aobo Wang(@M4x_1997) reporter

References

www.asus.com/security-advisory vendor-advisory

cve.org (CVE-2025-11775)

nvd.nist.gov (CVE-2025-11775)

Download JSON

Data based on CVE®. Copyright © 1999-2025, The MITRE Corporation. All rights reserved.