Appsecure logo

CVE-2025-59374: Critical Vulnerability in ASUS Live Update

A critical vulnerability in ASUS Live Update could allow unauthorized actions on targeted devices due to a supply chain compromise. Immediate action is required to mitigate risks associated with affected versions.

CRITICALKnown ExploitedCVSS 9.3 · Published December 17, 2025

Not a customer? See how AppSecure simulates real world attacks to protect your infrastructure.

Speak to Experts

CVE-2025-59374 is a critical vulnerability affecting certain versions of the ASUS Live Update client. This vulnerability allows unauthorized modifications introduced through a supply chain compromise. The modified builds could lead to unintended actions on devices that meet specific targeting conditions. As the Live Update client has reached End-of-Support (EOS) in October 2021, no currently supported devices or products are affected by this issue.

With a CVSS score of 9.3, this vulnerability is classified as critical, indicating a severe risk to affected systems. The implications of this vulnerability are significant, as attackers may leverage it for unauthorized access to device functionalities, leading to potential data breaches and service interruptions.

Organizations should prioritize patching immediately to mitigate this risk, especially if they are still utilizing the ASUS Live Update client. Users are encouraged to discontinue the use of the product if mitigations are unavailable.

As of now, there are no confirmed public exploits available for this vulnerability, but the potential for exploitation remains high due to the nature of the supply chain compromise.

Vulnerability Details

The official description states that the ASUS Live Update client was distributed with unauthorized modifications that could cause devices meeting specific conditions to perform unintended actions. The vulnerability is classified under CWE-506: Embedded Malicious Code. The CVSS version 4.0 vector string for this vulnerability is CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H, indicating a network attack vector with low complexity and no privileges required.

The CVSS base score of 9.3 emphasizes the critical nature of this vulnerability, impacting confidentiality, integrity, and availability.

Technical Analysis

The root cause of CVE-2025-59374 lies in the supply chain compromise that led to unauthorized modifications in the ASUS Live Update client. The attack vector is network-based, and the attack complexity is low, meaning that the exploit could be executed without significant technical barriers. Importantly, no user interaction is required, which heightens the risk level.

This vulnerability poses a high impact on confidentiality, integrity, and availability, potentially allowing attackers to execute unauthorized actions on vulnerable devices.

Risk & Impact Analysis

Risk to organizations includes unauthorized access to devices, leading to potential data breaches and manipulation of device functionalities. The blast radius could extend to any organization still utilizing the compromised ASUS Live Update client, particularly those that have not transitioned to supported versions or alternatives.

Given the critical CVSS score of 9.3, organizations must address this vulnerability as a top priority. The potential for exploitation, coupled with the legacy status of the affected product, creates a compelling case for urgent remediation measures.

Signal

Status

Known Exploit

No

Public PoC

No

Actively Exploited

Yes

Ransomware Use

No

Affected Versions

The affected versions of the ASUS Live Update client are all versions prior to 3.6.8. Organizations using these versions are strongly advised to discontinue use and seek alternative solutions.

Mitigation & Remediation

Organizations should prioritize patching immediately. Users should apply mitigations per vendor instructions and follow applicable BOD 22-01 guidance for cloud services. If mitigations are unavailable, organizations are advised to discontinue use of the product to prevent potential exploitation.

For detailed guidance, organizations can refer to the penetration testing services offered by AppSecure.

Detection Guidance

To detect potential exploitation attempts, organizations should monitor for unusual network traffic related to the ASUS Live Update client and review log indicators for unauthorized actions. Behavioral anomalies and system changes should also be closely examined.

AppSecure Threat Intelligence Insight

The long-term significance of CVE-2025-59374 underscores the importance of supply chain security. This vulnerability highlights the necessity for organizations to continuously evaluate their software supply chains and implement robust security measures to mitigate risks.

Security teams should take lessons from this incident to reinforce their defensive strategies. Regular assessments and updates of software components, especially those at the end of their support lifecycle, are crucial to maintaining secure operations.

For further reading on vulnerability management best practices, consider exploring the vulnerability management program design.

Additionally, understanding the trends in ransomware targeting can enhance preparedness against future threats. Organizations are encouraged to read about the current ransomware targeting trends to stay informed.

Finally, organizations should continuously assess their security posture and consider engaging with penetration testing services to identify and remediate vulnerabilities proactively.

Disclaimer: This content was generated using AI. While we strive for accuracy, please verify critical information with official sources.

Latest CVEs. Recently published vulnerabilities from the NVD database.

View all vulnerabilities
CVE IDSeverity
CVE-2025-65418HIGH
CVE-2025-65417MEDIUM
CVE-2025-65416MEDIUM
CVE-2025-65415MEDIUM
CVE-2025-61314HIGH

Protect Your Business with Hacker-Focused Approach.