Recommended reading

ASUS DriverHub driver management tool targeted by RCE vulnerability

News
By published

Researchers found a critical vulnerability in ASUS' driver management tool

Computer Hacked, System Error, Virus, Cyber attack, Malware Concept. Danger Symbol
(Image credit: Shutterstock)
  • A security researcher discovered a major flaw in ASUS DriverHub
  • The flaw allows users to run malicious code remotely
  • A patch was already released

DriverHub, ASUS’ official driver management tool, was carrying a critical vulnerability that allowed threat actors to execute malicious code on affected devices, remotely. It was recently discovered, and a patch was released, so users are urged to apply it as soon as possible to mitigate potential risks.

ASUS DriverHub is a piece of software that automatically downloads and installs the latest drivers for ASUS devices including laptops, motherboards, and peripherals. Its goal is to keep the devices updated at all times, without needing too much manual intervention. According to BleepingComputer, DriverHub comes preinstalled on some devices, and constantly runs in the background (which makes sense if it is to keep software updated at all times).

Now, a security researcher with the alias MrBruh said that DriverHub suffered from poor validation of commands. This allowed him to chain together two vulnerabilities, now tracked as CVE-2025-3462, and CVE-2025-3463, and get the tool to run malicious software.

Save up to 68% on identity theft protection for Techradar readers

Save up to 68% on identity theft protection for Techradar readers

TechRadar editors praise Aura's upfront pricing and simplicity. Aura also includes a password manager, VPN, and antivirus to make its security solution an even more compelling deal.

Preferred partner (What does this mean?)

View Deal

Releasing the patch

He reported his findings on April 8, and ASUS came back with a patch ten days later, on April 18. Although, the company says the disruptive potential of the flaw is somewhat limited: "This issue is limited to motherboards and does not affect laptops, desktop computers, or other endpoints," ASUS said, describing the CVE.

It still “strongly recommended” users apply the patch. "This update includes important security updates and ASUS strongly recommends that users update their ASUS DriverHub installation to the latest version," the company said in a security advisory.

"The latest Software Update can be accessed by opening ASUS DriverHub, then clicking the "Update Now" button." Ironically enough, the tool that handles all driver installs automatically needs to be patched - manually.

According to CyberInsider, the vulnerability window has been open for “an indeterminate period” but since there are no reports of abuse in the wild, it’s safe to assume that MrBruh was the first one to spot the bug.

Via BleepingComputer

You might also like

Sead Fadilpašić

Sead is a seasoned freelance journalist based in Sarajevo, Bosnia and Herzegovina. He writes about IT (cloud, IoT, 5G, VPN) and cybersecurity (ransomware, data breaches, laws and regulations). In his career, spanning more than a decade, he’s written for numerous media outlets, including Al Jazeera Balkans. He’s also held several modules on content writing for Represent Communications.

You must confirm your public display name before commenting

Please logout and then login again, you will then be prompted to enter your display name.