cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2021-28686,https://securityvulnerability.io/vulnerability/CVE-2021-28686,Stack-Based Buffer Overflow in ASUS GPUTweak II Driver,"The ASUS GPUTweak II drivers, AsIO2_64.sys and AsIO2_32.sys, prior to version 2.3.0.3, are susceptible to a stack-based buffer overflow. This vulnerability allows low-privileged users to exploit the device's security model, potentially causing a Denial of Service through specially crafted requests sent to DeviceIoControl. Immediate attention to software updates is recommended to mitigate this vulnerability.",Asus,Gputweak Ii,5.5,MEDIUM,0.0004400000034365803,false,,false,false,false,,,false,false,,2021-04-08T10:19:42.000Z,0
CVE-2021-28685,https://securityvulnerability.io/vulnerability/CVE-2021-28685,Local Privilege Escalation in ASUS GPUTweak II Drivers,"The ASUS GPUTweak II drivers, specifically AsIO2_64.sys and AsIO2_32.sys, prior to version 2.3.0.3, contain a vulnerability that allows low-privileged users to access physical memory directly. This flaw facilitates the mapping of physical memory into the virtual address space of a process and the interaction with Model Specific Register (MSR) registers. Exploiting this vulnerability could allow an attacker to elevate their privileges to NT AUTHORITY\SYSTEM, thereby gaining control over the system.",Asus,Gputweak Ii,7.8,HIGH,0.0004400000034365803,false,,false,false,false,,,false,false,,2021-04-08T10:18:54.000Z,0