Back to search
CVE-2025-2027
Published: Mar 28, 2025
Modified: Mar 28, 2025
PUBLISHED
Description
A double free vulnerability has been identified in the ASUS System Analysis service. This vulnerability can be triggered by sending specially crafted local RPC requests, leading to the service crash and potentially memory manipulation in some rare circumstances. Refer to the 'Security Update for MyASUS' section on the ASUS Security Advisory for more information.
| Vendor | Product | Versions |
|---|---|---|
ASUS | ASCI | affected before 1.1.32.0affected before 3.1.43.0affected before 3.2.44.0 |
Weaknesses (CWE)
References
https://www.asus.com/content/asus-product-security-advisory/
vendor-advisory
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now