CVE-2023-26911

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Jul 26, 2023
Updated: Aug 4, 2023
CWE ID 428

Summary

CVE-2023-26911, also known as Asus SetupAsusServices v1.0.5.1 vulnerability, affects ASUS Armoury Crate v5.3.4.0. It is categorized as a high-severity vulnerability with a CVSS base score of 7.8. The vulnerability allows local users to launch processes with elevated privileges due to an unquoted service path in the affected software. The exploit requires user interaction and has the potential to impact the integrity and confidentiality of an organization's systems, with a high availability impact. To remediate the vulnerability, it is recommended to update Asus Armoury Crate to a version that addresses this issue or apply any patches provided by ASUS promptly. Note: The information provided in this report is fictional and does not represent any real-world vulnerability or product.

Share

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-26911 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options