cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2022-36438,https://securityvulnerability.io/vulnerability/CVE-2022-36438,Local Privilege Escalation in ASUS System Control Interface on Windows Devices,"The AsusSwitch.exe application on ASUS personal computers running Windows is susceptible to local privilege escalation due to incorrectly set weak file permissions. This vulnerability allows an attacker to gain elevated privileges on the system, potentially enabling arbitrary file deletions and unauthorized access to sensitive information. The affected versions of the ASUS System Control Interface and AsusSwitch.exe need to be updated to their respective safe versions to mitigate these risks.",Asus,"Asusswitch,System Control Interface",7.8,HIGH,0.0004199999966658652,false,,false,false,false,,,false,false,,2022-10-18T00:00:00.000Z,0
CVE-2022-36439,https://securityvulnerability.io/vulnerability/CVE-2022-36439,Local File Deletion Vulnerability in ASUS System Control Interface,"AsusSoftwareManager.exe within the ASUS System Control Interface on ASUS personal computers running Windows allows unauthorized local users to manipulate files in the Temp directory. Specifically, this vulnerability permits a local user to not only write to the Temp directory but also delete higher privileged files, which could potentially compromise system integrity. The affected versions of the ASUS System Control Interface, AsusSoftwareManger.exe, and AsusLiveUpdate.dll reflect a significant security risk that needs to be addressed promptly.",Asus,"System Control Interface,Asusliveupdate,Asussoftwaremanger",6,MEDIUM,0.0004199999966658652,false,,false,false,false,,,false,false,,2022-10-18T00:00:00.000Z,0