← Voltar para CVEs
CVE-2026-1880
N/ADescricao
An Incorrect Permission Assignment for Critical Resource vulnerability in the ASUS DriverHub update process allows privilege escalation due to improper protection of required execution resources during the validation phase, permitting a local user to make unprivileged modifications. This allows the altered resource to pass system checks and be executed with elevated privileges upon a user-initiated update. Refer to the 'Security Update for ASUS DriverHub' section on the ASUS Security Advisory for more information.
Detalhes CVE
Pontuacao CVSS v3.1N/A
Publicado4/16/2026
Ultima modificacao4/17/2026
Fontenvd
Avistamentos honeypot0
Fraquezas (CWE)
CWE-367
Referencias
https://www.asus.com/security-advisory(54bf65a7-a193-42d2-b1ba-8e150d3c35e1)
Correlacoes IOC
Sem correlacoes registradas
This product uses data from the NVD API but is not endorsed or certified by the NVD.