Buffer overflow in Asus Armoury Crate

CVE-2025-9336

A stack buffer overflow has been identified in the AsIO3.sys driver. This vulnerability can be triggered by input manipulation, may leading to a system crash (BSOD) or other potentially undefined execution. Refer to the 'Security Update f…

Vulnerability class: Buffer Overflow

EPSS: 0.000 (6.6th percentile) — read the EPSS interpretation.

Affected products

Asus Armoury Crate — versions Before v6.3.4

Weakness classification (CWE)

CWE-121 — Stack-based Buffer Overflow

References

www.asus.com/security-advisory/ (vendor-advisory)