CVE-2026-1880
CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
0th
An Incorrect Permission Assignment for Critical Resource vulnerability in the ASUS DriverHub update process allows privilege escalation due to improper protection of required execution resources during the validation phase, permitting a local user to make unprivileged modifications. This allows the altered resource to pass system checks and be executed with elevated privileges upon a user-initiated update. Refer to the 'Security Update for ASUS DriverHub' section on the ASUS Security Advisory for more information.
| CWE | CWE-367 |
| Vendor | asus |
| Product | driverhub |
| Published | Apr 16, 2026 |
| Last Updated | Apr 16, 2026 |
Stay Ahead of the Next One
Get instant alerts for asus driverhub
Be the first to know when new unknown vulnerabilities affecting asus driverhub are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
Affected Versions
ASUS / DriverHub
0 < 1.0.6.12