Back to search
CVE-2026-7480
Published: May 29, 2026
Modified: May 29, 2026
PUBLISHED
Description
An Incorrect Permission Assignment for Critical Resource vulnerability in ASUS System Control Interface allows a local user to elevate privileges to SYSTEM and execute arbitrary code via a crafted RPC call that bypass the validation mechanism. Refer to the 'Security Update for ASUS System Control Interface' section on the ASUS Security Advisory for more information.
| Vendor | Product | Versions |
|---|---|---|
ASUS | ASUS System Control Interface | affected 3.1.59.0 and earlier |
ASUS | ASUS System Control Interface | affected 3.2.60.0 and earlier |
Weaknesses (CWE)
References
https://www.asus.com/security-advisory/
vendor-advisory
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now