Vulnerabilities > Asus > System Control Interface

DATE CVE VULNERABILITY TITLE RISK
2022-10-18 CVE-2022-36438 Incorrect Default Permissions vulnerability in Asus Asusswitch and System Control Interface
AsusSwitch.exe on ASUS personal computers (running Windows) sets weak file permissions, leading to local privilege escalation (this also can be used to delete files within the system arbitrarily).
local
low complexity
asus CWE-276
7.8
2022-10-18 CVE-2022-36439 Unspecified vulnerability in Asus products
AsusSoftwareManager.exe in ASUS System Control Interface on ASUS personal computers (running Windows) allows a local user to write into the Temp directory and delete another more privileged file via SYSTEM privileges.
local
low complexity
asus
6.0