CVE-2022-35899

There is an unquoted service path in ASUSTeK Aura Ready Game SDK service GameSDK.exe 1.0.0.4. This might allow a local user to escalate privileges by creating a %PROGRAMFILESX86%\ASUS\GameSDK.exe file...

Code injection

There is an unquoted service path in ASUSTeK Aura Ready Game SDK service GameSDK.exe 1.0.0.4. This might allow a local user to escalate privileges by creating a %PROGRAMFILESX86%\ASUS\GameSDK.exe file...

CVE-2022-35899

CVE-2022-35899 affects ASUSTeK Aura Ready Game SDK service (GameSDK.exe) v1.0.0.4 with an unquoted service path, enabling local privilege escalation via overwriting the binary in Program Files (x86). Public exploits/documentation exist (e.g., Exploit-DB entry) and patch v1.0.5.0 is available; rem...

PT-2022-23006 · Asustek · Asustek Aura Ready Game Sdk

Name of the Vulnerable Software and Affected Versions: ASUSTeK Aura Ready Game SDK service GameSDK.exe version 1.0.0.4 Description: The issue is related to an unquoted service path in the ASUSTeK Aura Ready Game SDK service. This might allow a local user to escalate privileges by creating a...