216.73.217.64

CVE-2026-7480

· Published 29/05/2026 02:16 · Modified 29/05/2026 14:46

Labels: CVE-2026-7480 2026-05-2954bf65a7-a193-42d2-b1ba-8e150d3c35e1CVE-2026-7480CWE-732

Essential information

Published
29/05/2026 02:16
Modified
29/05/2026 14:46
Author
Creator
CVSS
7.3 HIGH (v3) 7.3 HIGH (v4.0)
CISA KEV
No
CWE
CVSS vector

CVSS metrics

Description

An Incorrect Permission Assignment for Critical Resource vulnerability in ASUS System Control Interface allows a local user to elevate privileges to SYSTEM and execute arbitrary code via a crafted RPC call that bypass the validation mechanism. Refer to the 'Security Update for ASUS System Control Interface' section on the ASUS Security Advisory for more information.

NVD status

Status
Awaiting Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source
54bf65a7-a193-42d2-b1ba-8e150d3c35e1
NVD
View on NVD

Affected products (CPE)

ProductCPE
asus / system control interface cpe:2.3:a:asus:system_control_interface:*:*:*:*:*:*:*:*

References