Lucene search
China National Vulnerability DatabaseCNVD-2022-91660HistorySep 30, 2022 - 12:00 a.m.
ASUS Armoury Crate Service Symbolic Link Replacement Vulnerability
2022-09-3000:00:00
China National Vulnerability Database
www.cnvd.org.cn
12
asus
armoury crate
vulnerability
log modification
system compromise
symbolic links
rog gaming products
centralized control
log file attributes
arbitrary system files
asus china
cnvd
EPSS
0
Percentile
12.6%
ASUS Armoury Crate Service is a software utility from ASUS China designed to provide centralized control of supported ROG gaming products. An attacker could use the vulnerability to modify the log file attributes to symbolic links to arbitrary system files, causing the logging function to overwrite the system files, thereby compromising the system.
Related
cvelist
cvelist
cve
cve
CVE-2022-38699
2022-09-28 04:15:13
prion
prion
Input validation
2022-09-28 04:15:00
nvd
nvd
CVE-2022-38699
2022-09-28 04:15:13