CVE-2022-22814

CRITICAL

MyASUS < 3.1.2.0 - Privilege Escalation via System Diagnosis Service

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2022-22814. PoCs published by DShankle.

AI-analyzed exploit summary This PoC demonstrates a local privilege escalation (LPE) vulnerability in AsusSystemDiagnosis.exe via an exposed ALPC port. By calling Proc39() or Proc40() via RPC, an attacker can spawn SYSTEM-level processes (taskmgr.exe or mmc.exe) and escalate privileges.

Description

The System Diagnosis service of MyASUS before 3.1.2.0 allows privilege escalation.

Exploits (1)

nomisec WORKING POC

by DShankle · poc

https://github.com/DShankle/CVE-2022-22814_PoC

View Code ZIP pw:eip

This PoC demonstrates a local privilege escalation (LPE) vulnerability in AsusSystemDiagnosis.exe via an exposed ALPC port. By calling Proc39() or Proc40() via RPC, an attacker can spawn SYSTEM-level processes (taskmgr.exe or mmc.exe) and escalate privileges.

Classification

Working Poc 90%

Attack Type

Lpe

Complexity

Moderate

Reliability

Reliable

Target: AsusSystemDiagnosis.exe (ASUS system component)

No auth needed

Prerequisites: Access to the target system · AsusSystemDiagnosis.exe running with vulnerable ALPC port exposed

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation T1548.003 - Sudo and Sudo Caching

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1

Core References

Vendor Advisory x_refsource_misc

https://www.asus.com/Static_WebPage/ASUS-Product-Security-Advisory/

Scores

CVSS v3 9.8

EPSS 0.0227

EPSS Percentile 80.7%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

Status published

Products (1)

asus/myasus < 3.1.2.0

Published Mar 10, 2022

Tracked Since Feb 18, 2026