CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2023-26911

ASUS SetupAsusServices v1.0.5.1 in Asus Armoury Crate v5.3.4.0 contains an unquoted service path vulnerability which allows local users to launch processes with elevated privileges.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 4.6%

CVSS Severity

CVSS v3 Score 7.8

References

http://asus.com
http://setupasusservices.com
https://irradiate.com.au/blog/CVE-2023-26911
http://asus.com
http://setupasusservices.com
https://irradiate.com.au/blog/CVE-2023-26911

Products affected by CVE-2023-26911

Asus » Armoury Crate » Version: N/A

cpe:2.3:a:asus:armoury_crate:-
Asus » Armoury Crate » Version: 4.1.0.8

cpe:2.3:a:asus:armoury_crate:4.1.0.8
Asus » Armoury Crate » Version: 5.3.4.0

cpe:2.3:a:asus:armoury_crate:5.3.4.0
Asus » Setupasusservices » Version: Any

cpe:2.3:a:asus:setupasusservices:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2023-26911

Products

Pricing

Contact Us