CVE-2025-59374
Published Dec 17, 2025
Last updated 6 days ago
AI description
CVE-2025-59374 refers to a vulnerability affecting certain versions of the ASUS Live Update client, which were distributed with unauthorized modifications due to a supply chain compromise. The modified builds could cause devices meeting specific targeting conditions to perform unintended actions. This vulnerability is related to a supply chain attack, known as Operation ShadowHammer, where an advanced persistent threat (APT) group breached ASUS servers between June and November 2018. The attackers implanted malicious code, targeting a small group of users identified by their network adapter's MAC addresses. Although the issue was fixed in version 3.6.8, the Live Update client reached end-of-support on December 4, 2025.
- Description
- "UNSUPPORTED WHEN ASSIGNED" Certain versions of the ASUS Live Update client were distributed with unauthorized modifications introduced through a supply chain compromise. The modified builds could cause devices meeting specific targeting conditions to perform unintended actions. Only devices that met these conditions and installed the compromised versions were affected. The Live Update client has already reached End-of-Support (EOS) in October 2021, and no currently supported devices or products are affected by this issue.
- Source
- 54bf65a7-a193-42d2-b1ba-8e150d3c35e1
- NVD status
- Analyzed
- Products
- live_update
CVSS 4.0
- Type
- Secondary
- Base score
- 9.3
- Impact score
- -
- Exploitability score
- -
- Vector string
- CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
- Severity
- CRITICAL
CVSS 3.1
- Type
- Primary
- Base score
- 9.8
- Impact score
- 5.9
- Exploitability score
- 3.9
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
- Severity
- CRITICAL
Data from CISA
- Vulnerability name
- ASUS Live Update Embedded Malicious Code Vulnerability
- Exploit added on
- Dec 17, 2025
- Exploit action due
- Jan 7, 2026
- Required action
- Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
- 54bf65a7-a193-42d2-b1ba-8e150d3c35e1
- CWE-506
- Hype score
- Not currently trending
🚨 ASUS Live #Update Vulnerability #CVE-2025-59374: Understanding the Real Threat https://t.co/zDMTOw3Wrc
@UndercodeNews
22 Dec 2025
15 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 Critical flaw in ASUS Live Update flagged by CISA! 🛡️ CVE-2025-59374 rated at 9.3. Beware of embedded malicious code! #Cybersecurity #CISA #ASUSSecurity 🔗 Source: https://t.co/Hz3RJHDMpj
@JamaalChalid
22 Dec 2025
17 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
22/12/2025 CVE-2025-59374 linked to a historic supply-chain attack in ASUS Live Update. Don't fall for the hype—this isn't a new threat! 🔒 Source: https://t.co/qhZILlHFqY
@kernyx64
22 Dec 2025
7 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Not all CISA-linked alerts are urgent: ASUS Live Update CVE-2025-59374 https://t.co/ucyYFgpa4c
@SecurityAid
22 Dec 2025
67 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
📌 تحذير حول ثغرة في تحديث ASUS Live، المُسجلة تحت CVE-2025-59374، يشير إلى أنها تمثل هجوماً تاريخياً على سلسلة التوريد لمنتج برمجي انتهت صلاحيته، وليس هجوماً جديدا
@Cybercachear
22 Dec 2025
71 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Not all CISA-linked alerts are urgent: ASUS Live Update CVE-2025-59374 https://t.co/KQKjmmBVCF #Security https://t.co/OKOUrbrQMp
@blueteamsec1
22 Dec 2025
659 Impressions
0 Retweets
2 Likes
0 Bookmarks
0 Replies
0 Quotes
Not all CISA-linked alerts are urgent: ASUS Live Update CVE-2025-59374 https://t.co/yYCljrLqJc #Security
@TheCyberSecHub
22 Dec 2025
337 Impressions
0 Retweets
3 Likes
0 Bookmarks
0 Replies
0 Quotes
Not all CISA-linked alerts are urgent: ASUS Live Update CVE-2025-59374 https://t.co/lXk9a2sKX7
@rigtsec
22 Dec 2025
2 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Not all CISA-linked alerts are urgent: ASUS Live Update CVE-2025-59374 - @Ax_Sharma https://t.co/NMkWwl5UyS https://t.co/NMkWwl5UyS
@BleepinComputer
22 Dec 2025
7488 Impressions
12 Retweets
38 Likes
11 Bookmarks
0 Replies
0 Quotes
CISA Flags Critical ASUS Live Update Flaw After Evidence of Active Exploitation. The vulnerability, tracked as CVE-2025-59374 (CVSS score: 9.3), has been described as an "embedded malicious code vulnerability". https://t.co/JBc7b95Fj6 https://t.co/gue0cTlEw7
@riskigy
21 Dec 2025
70 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 𝐁𝐫𝐢𝐞𝐟 𝐒𝐮𝐦𝐦𝐚𝐫𝐲: 🚨 CISA added a critical ASUS Live Update vulnerability (CVE-2025-59374, CVSS 9.3) to its Known Exploited Vulnerabilities (KEV) catalog after evidence of active exploitation. The flaw is described as an “embedded malicio
@ThreatSynop
21 Dec 2025
5 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 𝐁𝐫𝐢𝐞𝐟 𝐒𝐮𝐦𝐦𝐚𝐫𝐲: 🚨 CISA added a critical ASUS Live Update vulnerability (CVE-2025-59374, CVSS 9.3) to its Known Exploited Vulnerabilities (KEV) catalog after evidence of active exploitation. The flaw is described as an “embedded malicio
@ThreatSynop
20 Dec 2025
59 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🔴 ASUS Live Update Backdoor Still Exploitable—Seven Years After 2018 Supply Chain Attack CISA added CVE-2025-59374 (CVSS 9.3) to its KEV catalog. What's nasty: Chinese state-sponsored attackers backdoored ASUS Live Update in 2018, targeting 600 specific devices via hardc
@the_c_protocol
20 Dec 2025
51 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
🚨 ASUS Live Update [—] Dec 20, 2025 Security advisory report on critical vulnerabilities, active exploitation, and end-of-support risks for ASUS Live Update, including CVE-2025-59374. Checkout our Threat Intelligence Platform: https://t.co/QuwNtEgYh1... https://t.co/hIF3TADr
@transilienceai
20 Dec 2025
51 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Technical Deep Dive: Dissecting the CVE-2025-59374 Supply Chain Hijack Read the full report on - https://t.co/tOhR5O6rzd https://t.co/9YTrG0jqcx
@Iambivash007
19 Dec 2025
3 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CISA warns attackers are exploiting a backdoor in the now-discontinued Asus Live Update tool (CVE-2025-59374) used in a supply chain attack. Users should remove or patch affected software. https://t.co/hSyATuRwfL
@threatcluster
18 Dec 2025
4 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-59374: When a Trusted ASUS Update Turned Into a Silent Backdoor #CyberAttack #Asus Read the Whole article on : https://t.co/f135bw8J1F
@WeAreCyberP1
18 Dec 2025
2 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
SUPPLY CHAIN ALERT: Poisoned ASUS Live Update Tool Used to Deploy Stealth Malware [ CISA Mandatory Patch for CVE-2025-59374] Read the full report on - https://t.co/PxtuHJz1kk https://t.co/69TrE2VLjx
@Iambivash007
18 Dec 2025
8 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Vulnerability Alert CISA confirms active exploitation of a critical ASUS Live Update flaw (CVE-2025-59374, CVSS 9.3) tied to a supply-chain compromise. Organizations should discontinue use immediately. #CyberSecurity #VulnerabilityAlert #SupplyChainSecurity https://t.co/n7JJxV
@CloneSystemsInc
18 Dec 2025
130 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
CISA inclui falha crítica no ASUS Live Update na lista KEV: Vulnerabilidade CVE-2025-59374, resultado de ataque à cadeia de suprimentos, permite ações maliciosas em versões comprometidas. ASUS recomendou atualização para versão 3.6.8 ou superior. https://t.co/YRqE1CK9VD
@caveiratech
18 Dec 2025
68 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
📌 أضافت وكالة الأمن السيبراني الأمريكية (CISA) عيبًا حرجًا في تحديثات ASUS إلى قائمة الثغرات المعروفة، مشيرةً إلى وجود أدلة على استغلال فعال. الثغرة، المعرو
@Cybercachear
18 Dec 2025
70 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
米国サイバーセキュリティ・社会基盤安全保障庁(CISA)が既知の悪用された脆弱性カタログに3件の追加。シスコ社複数製品のCVE-2025-20393、SonicWall SMA1000のCVE-2025-40602、ASUS Live UpdateのCVE-2025-59374。前者2つは対処期
@__kokumoto
18 Dec 2025
4145 Impressions
1 Retweet
4 Likes
1 Bookmark
1 Reply
1 Quote
🛡️ We added Cisco vulnerability CVE-2025-20393, SonicWall vulnerability CVE-2025-40602, and ASUS vulnerability CVE-2025-59374 to our Known Exploited Vulnerabilities Catalog. Visit https://t.co/myxOwap1Tf & apply mitigations to protect your org from cyberattacks. #Cyberse
@CISACyber
17 Dec 2025
4901 Impressions
10 Retweets
47 Likes
5 Bookmarks
0 Replies
0 Quotes
🚨 CRITICAL: CVE-2025-59374 exposes legacy ASUS Live Update (pre-3.6.6) to supply chain compromise! Unsupported clients may execute malicious code. Audit & isolate legacy devices now. Details: https://t.co/fw34ArLMKi... https://t.co/griSLv9e1u
@offseq
17 Dec 2025
67 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:asus:live_update:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "649A2172-4D6A-491F-A8CF-1CD0D253B879",
"versionEndExcluding": "3.6.8"
}
],
"operator": "OR"
}
]
}
]