← All drivers
vulnerable
Driver

glckio2.sys

ASUS Aura Sync / Gigabyte RGB Fusion I/O driver

From ASUSTeK Computer
Status
On a known-vulnerable list
Known variants
3 distinct hashes
Public CVEs
2
Field notes

glckio2.sys is a kernel driver signed by ASUSTeK Computer Inc. and used by ASUS Aura Sync and Gigabyte RGB Fusion lighting software for low-level I/O port access. Despite its cryptic filename, it is part of the same driver family as other ASUS and ENE Technology lighting controller drivers.

The driver exposes I/O port read/write and an arbitrary DWORD write primitive via its IOCTL interface, both documented in public CVEs from 2018. ASUS partially patched but did not fully resolve all reported issues. Keep your lighting software updated and check whether a newer driver version is available.

What the record shows

glckio2.sys is listed as a known-vulnerable driver on the public LOLDrivers project. 3 distinct binary hashes matching this filename are on record, meaning multiple versions of the file have been observed.

What this means, plainly
Presence is not proof of misuse. Driver files on the LOLDrivers list commonly ship with legitimate hardware tools, gaming software, or vendor utilities. Their presence is recorded as evidence on a record. It is never treated as a verdict about a person.
Source

Status data comes from the public LOLDrivers project, a community-curated registry of drivers known to be vulnerable or malicious. The snapshot Vera uses was refreshed July 10, 2026. CVE links go to the NIST National Vulnerability Database.

Cite this entry

Vera Project. “glckio2.sys.” Vera Field Guide (Driver). The Vera Project. https://www.veraproject.xyz/field-guide/drivers/glckio2-sys