Описание
An uncontrolled DLL loading path vulnerability exists in AsusSoftwareManagerAgent. A local attacker may influence the application to load a DLL from an attacker-controlled location, potentially resulting in arbitrary code execution. Refer to the '
Security Update for MyASUS' section on the ASUS Security Advisory for more information.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 4.0.52.0 (исключая)Версия до 4.2.50.0 (исключая)
Одно из
cpe:2.3:a:asus:myasus:*:*:*:*:*:*:x64:*
cpe:2.3:a:asus:myasus:*:*:*:*:*:*:arm64:*
EPSS
Процентиль: 2%
0.00014
Низкий
7.8 High
CVSS3
Дефекты
CWE-426
Связанные уязвимости
CVSS3: 7.8
github
около 1 месяца назад
An uncontrolled DLL loading path vulnerability exists in AsusSoftwareManagerAgent. A local attacker may influence the application to load a DLL from an attacker-controlled location, potentially resulting in arbitrary code execution. Refer to the ' Security Update for MyASUS' section on the ASUS Security Advisory for more information.
EPSS
Процентиль: 2%
0.00014
Низкий
7.8 High
CVSS3
Дефекты
CWE-426