What is CVE-2025-3462?

CVE-2025-3462 is a vulnerability in Asus Driverhub, classified under Origin Validation Error. Published 2025-05-09.

Is CVE-2025-3462 known to be exploited?

3 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in Asus Driverhub

CVE-2025-3462

"This issue is limited to motherboards and does not affect laptops, desktop computers, or other endpoints." An insufficient validation in ASUS DriverHub may allow unauthorized sources to interact with the software's features via crafted HT…

EPSS: 0.003 (57.2th percentile) — read the EPSS interpretation.

Affected products

Asus Driverhub — versions before 1.0.6.0

Weakness classification (CWE)

CWE-346 — Origin Validation Error

Public proof-of-concept exploits

ARPSyndicate/cve-scores
Raakaar/AsusService-Reaper
sensepost/bloatware-pwn

References

www.asus.com/content/asus-product-security-advisory/ (vendor-advisory)

Frequently asked questions

What is CVE-2025-3462?: CVE-2025-3462 is a vulnerability in Asus Driverhub, classified under Origin Validation Error. Published 2025-05-09.
Is CVE-2025-3462 known to be exploited?: 3 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.