PT-2019-15788 · Asus · Asus Atk Package

Published

2019-12-18

Updated

2021-07-21

CVE-2019-19235

CVSS v3.1

7.0

High

Vector

AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions ASUS ATK Package versions prior to V1.0.0061

Description The issue allows for unsigned code execution with no additional execution required. To exploit this, a user must place an application at a specific path with a particular file name.

Recommendations For versions prior to V1.0.0061, update to version V1.0.0061 or later to resolve the issue.

Fix

Uncontrolled Search Path Element

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-427

Related Identifiers

CVE-2019-19235

Affected Products

Asus Atk Package

PT-2019-15788 · Asus · Asus Atk Package

CVE-2019-19235

Weakness Enumeration

Related Identifiers

Affected Products

References · 5