top of page
perceptive_background_267k.jpg

ASUS Live Update contains an embedded malicious code vulnerability client were distributed with unauthorized modifications introduced through a supply chain com…

Published:

17 december 2025 om 00:00:00

Alert date:

17 december 2025 om 21:02:12

Source:

cisa.gov

Click to open the original link from this advisory

ASUS Live Update software was compromised through a supply chain attack, with malicious code embedded in distributed clients. The unauthorized modifications allow devices meeting specific targeting conditions to perform unintended actions. This represents a significant supply chain security incident affecting ASUS update mechanisms. The impacted product may be end-of-life or end-of-service. ASUS recommends users discontinue product utilization due to the security risk.

Technical details

Mitigation steps:

Affected products:

ASUS Live Update

Related links:

https://nvd.nist.gov/vuln/detail/CVE-2025-59374
https://www.asus.com/support/faq/1018727/

Related CVE's:

Related threat actors:

IOC's:

This article was created with the assistance of AI technology by Perceptive.

About us

© 2025 by Perceptive Security. All rights reserved.

email: info@perceptivesecurity.com

Deze website toont informatie afkomstig van externe bronnen; Perceptive aanvaardt geen verantwoordelijkheid voor de juistheid, volledigheid of actualiteit van deze informatie.

bottom of page