CVE-2026-1880 in DriverHubالمعلومات

الملخص

بحسب MITRE • 16/04/2026

An Incorrect Permission Assignment for Critical Resource vulnerability in the ASUS DriverHub update process allows privilege escalation due to improper protection of required execution resources during the validation phase, permitting a local user to make unprivileged modifications. This allows the altered resource to pass system checks and be executed with elevated privileges upon a user-initiated update. Refer to the 'Security Update for ASUS DriverHub' section on the ASUS Security Advisory for more information.

Be aware that VulDB is the high quality source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

مسؤول

ASUS

حجز

04/02/2026

إفشاء

16/04/2026

الاعتدال

تمت الموافقة

إدخال

VDB-357867

CPE

جاهز

CWE

CWE-367 (مؤكد)

CVSS

7.0 (VulDB)

EPSS

0.00007

KEV

لا

النشاطات

منخفض جدًا

القطاع

Pharma, Lawfirm, ...

المصادر

MITRE	https://www.cve.org/CVERecord?id=CVE-2026-1880
NVD	https://nvd.nist.gov/vuln/detail/CVE-2026-1880
CVE Details	https://www.cvedetails.com/cve/CVE-2026-1880/

التالي ▸نظرة عامة ◂ السابق

Do you know our Splunk app?

Download it now for free!