CISA flags ASUS Live Update CVE, but the attack is years old
From BleepingComputer to All on Mon Dec 22 14:48:51 2025
An ASUS Live Update vulnerability tracked as CVE-2025-59374 has been making the rounds in infosec feeds, with some headlines implying recent or ongoing exploitation. A closer look, however, shows the CVE documents a historic supply-chain attack in an End-of-Life (EoL) software product, not a new attack. [...]