NULL pointer dereference in Asus Armoury Crate
CVE-2025-9337
A null pointer dereference has been identified in the AsIO3.sys driver. The vulnerability can be triggered by a specially crafted input, which may lead to a system crash (BSOD). Refer to the 'Security Update for Armoury Crate App' section…
EPSS: 0.000 (6.3th percentile) — read the EPSS interpretation.
Affected products
- Asus Armoury Crate — versions Before v6.3.4
Weakness classification (CWE)
References
- www.asus.com/security-advisory/ (vendor-advisory)