VYPR
Unrated severityCISA KEVNVD Advisory· Published Dec 17, 2025· Updated Feb 26, 2026

CVE-2025-59374

CVE-2025-59374

Description

"UNSUPPORTED WHEN ASSIGNED" Certain versions of the ASUS Live Update client were distributed with unauthorized modifications introduced through a supply chain compromise. The modified builds could cause devices meeting specific targeting conditions to perform unintended actions. Only devices that met these conditions and installed the compromised versions were affected. The Live Update client has already reached End-of-Support (EOS) in October 2021, and no currently supported devices or products are affected by this issue.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Asus/Live Update clientllm-create2 versions
    <= October 2021 (EOS date)+ 1 more
    • (no CPE)range: <= October 2021 (EOS date)
    • (no CPE)range: before 3.6.6

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.