CVE-2025-3463
First published: Fri May 09 2025(Updated: )
"This issue is limited to motherboards and does not affect laptops, desktop computers, or other endpoints." An insufficient validation vulnerability in ASUS DriverHub may allow untrusted sources to affect system behavior via crafted HTTP requests. Refer to the 'Security Update for ASUS DriverHub' section on the ASUS Security Advisory for more information.
Credit: 54bf65a7-a193-42d2-b1ba-8e150d3c35e1
| Affected Software | Affected Version | How to fix |
|---|---|---|
| ASUS DriverHub |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2025-3463?
CVE-2025-3463 is classified as a moderate severity vulnerability due to insufficient validation in ASUS DriverHub.
How do I fix CVE-2025-3463?
To fix CVE-2025-3463, users should ensure they have the latest security updates for ASUS DriverHub installed.
Who is affected by CVE-2025-3463?
CVE-2025-3463 primarily affects motherboards equipped with ASUS DriverHub, excluding laptops and desktop computers.
What type of vulnerability is CVE-2025-3463?
CVE-2025-3463 is an insufficient validation vulnerability that allows potential exploitation via crafted HTTP requests.
What impact does CVE-2025-3463 have on affected systems?
CVE-2025-3463 can allow untrusted sources to affect system behavior, potentially leading to unauthorized actions on the motherboard.
- collector/mitre-cve
- source/MITRE
- agent/references
- agent/weakness
- agent/type
- agent/description
- agent/first-publish-date
- agent/guess-ai
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- agent/softwarecombine
- collector/nvd-api
- source/NVD
- agent/last-modified-date
- agent/source
- agent/severity
- agent/author
- agent/tags
- agent/event
- vendor/asus
- canonical/asus driverhub