CVE-2025-4570

An insecure sensitive key storage issue was found in MyASUS.potentially allowing unauthorized actor to obtain a token that could be used to communicate with certain services.


Refer to the 'Security Update for for MyASUS' section on the ASUS Security Advisory for more information.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
UNKNOWN
---
ASUSCNA
---
---
CISA-ADPADP
---
---
Awaiting analysis
This vulnerability is currently awaiting analysis.
Base Score
CVSS 3.x
EPSS Score
Percentile: Unknown
Common Weakness Enumeration
References
https://www.asus.com/content/security-advisory/