Asus Asci vulnerabilities

3 known vulnerabilities affecting asus/asci.

Total CVEs

3

CISA KEV

0

Public exploits

0

Exploited in wild

0

Severity breakdown

HIGH1MEDIUM2

Vulnerabilities

Page 1 of 1

CVE-2025-12793HIGHCVSS 8.5vBefore v3.1.49.0vBefore v1.1.37.0+1 more2026-01-06

CVE-2025-12793 [HIGH] CWE-426 CVE-2025-12793: An uncontrolled DLL loading path vulnerability exists in AsusSoftwareManagerAgent. A local attacker An uncontrolled DLL loading path vulnerability exists in AsusSoftwareManagerAgent. A local attacker may influence the application to load a DLL from an attacker-controlled location, potentially resulting in arbitrary code execution. Refer to the ' Security Update for MyASUS' section on the ASUS Security Advisory for more information.

CVE-2025-2027MEDIUMCVSS 5.9vbefore 1.1.32.0vbefore 3.1.43.0+1 more2025-03-28

CVE-2025-2027 [MEDIUM] CWE-415 CVE-2025-2027: A double free vulnerability has been identified in the ASUS System Analysis service. This vulnerabil A double free vulnerability has been identified in the ASUS System Analysis service. This vulnerability can be triggered by sending specially crafted local RPC requests, leading to the service crash and potentially memory manipulation in some rare circumstances. Refer to the 'Security Update for MyASUS' section on the ASUS Security Advisory for more i

CVE-2024-55408MEDIUMCVSS 5.1vbefore 1.0.30.0vbefore 3.1.41.02025-01-06

CVE-2024-55408 [MEDIUM] CWE-862 CVE-2024-55408: An improper access control vulnerability in the AsusSAIO.sys driver may lead to the misuse of softwa An improper access control vulnerability in the AsusSAIO.sys driver may lead to the misuse of software functionality utilizing the driver when crafted IOCTL requests are supplied.