CVE-2025-15038

EUVD-2025-208609
An Out-of-Bounds
Read vulnerability exists in the ASUS Business System
Control Interface driver. This vulnerability can be triggered by an unprivileged local  user
sending a specially crafted IOCTL  request, potentially leading
to a disclosure of
kernel information or a system crash. Refer to the "Security Update for ASUS 
Business System Control Interface" section on the ASUS Security Advisory for more information.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
UNKNOWN
---
Awaiting analysis
This vulnerability is currently awaiting analysis.
Base Score
CVSS 3.x
EPSS Score
Percentile: Unknown
Common Weakness Enumeration
References
https://www.asus.com/content/security-advisory