2 matches found
CVE-2022-36438
Summary: CVE-2022-36438 affects ASUS System Control Interface 3 (before 3.1.5.0) and AsusSwitch.exe (before 1.0.10.0) on Windows. The issue is weak file permissions in these components, which enables local privilege escalation and could allow arbitrary file deletion within the system. Root cause:...
CVE-2022-36439
CVE-2022-36439 affects ASUS System Control Interface components on Windows: AsusSoftwareManager.exe before 1.0.53.0, AsusLiveUpdate.dll before 1.0.45.0, and System Control Interface before 3.1.5.0. A local attacker could write to the Temp directory and delete a more privileged file using SYSTEM p...