CVE-2026-1878
Lifecycle Timeline
2DescriptionCVE.org
An Insufficient Integrity Verification vulnerability in the ASUS ROG peripheral driver installation process allows privilege escalation to SYSTEM. The vulnerability is due to improper access control on the installation directory, which enables the exploitation of a race condition where the legitimate installer is substituted with an unexpected payload immediately after download, resulting in arbitrary code execution. Refer to the "Security Update for ASUS ROG peripheral driver" section on the ASUS Security Advisory for more information.
AnalysisAI
An Insufficient Integrity Verification vulnerability in the ASUS ROG peripheral driver installation process allows privilege escalation to SYSTEM. The vulnerability is due to improper access control on the installation directory, which enables the exploitation of a race condition where the legitimate installer is substituted with an unexpected payload immediately after download, resulting in arbitrary code execution. Refer to the "Security Update for ASUS ROG peripheral driver" section on the...
Technical ContextAI
This vulnerability (CWE-494: Download of Code Without Integrity Check) affects ASUS ROG peripheral driver installation process. An Insufficient Integrity Verification vulnerability in the ASUS ROG peripheral driver installation process allows privilege escalation to SYSTEM. The vulnerability is due to improper access control on the installation directory, which enables the exploitation of a race condition where the legitimate installer is substituted with an unexpected payload immediately after download, resulting in arbitrary code execution. Refer to the "Security Update for ASUS ROG peripheral driver" section on the AS
Affected ProductsAI
Product: ASUS ROG peripheral driver installation process.
RemediationAI
Monitor vendor advisories for a patch.
Same weakness CWE-494 – Download of Code Without Integrity Check
View allSame technique Privilege Escalation
View allShare
External POC / Exploit Code
Leaving vuln.today