cvedb.io
CVE-2025-59373
UNKNOWN · CVSS n/a
EPSS exploitation probability: 0%
Published 2025-11-25T02:15:44.783 · Last modified 2026-06-17T09:46:02.473

Summary

A local privilege escalation vulnerability exists in the restore mechanism of ASUS System Control Interface. It can be triggered when an unprivileged actor copies files without proper validation into protected system paths, potentially leading to arbitrary files being executed as SYSTEM. For more information, please refer to section Security Update for MyASUS in the ASUS Security Advisory.

Does this affect you?

Add your gear to cvedb and we'll alert you only when a vendor you run ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.