Vulnerabilities (CVE)

Filtered by vendor Asus Subscribe
Filtered by product System Control Interface
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-36439 1 Asus 3 Asusliveupdate, Asussoftwaremanger, System Control Interface 2024-11-21 N/A 6.0 MEDIUM
AsusSoftwareManager.exe in ASUS System Control Interface on ASUS personal computers (running Windows) allows a local user to write into the Temp directory and delete another more privileged file via SYSTEM privileges. This affects ASUS System Control Interface 3 before 3.1.5.0, AsusSoftwareManger.exe before 1.0.53.0, and AsusLiveUpdate.dll before 1.0.45.0.
CVE-2022-36438 1 Asus 2 Asusswitch, System Control Interface 2024-11-21 N/A 7.8 HIGH
AsusSwitch.exe on ASUS personal computers (running Windows) sets weak file permissions, leading to local privilege escalation (this also can be used to delete files within the system arbitrarily). This affects ASUS System Control Interface 3 before 3.1.5.0, and AsusSwitch.exe before 1.0.10.0.