Bad news! The Asus Armoury Crate app, which comes preinstalled on many of the company’s gaming desktops, laptops, and ROG Ally X gaming handhelds, includes a severe flaw that could give hackers full Windows admin rights. That means your PC is the hacker’s PC now.
The good news is, a fix is available. If you have Armoury Crate installed, simply head to Settings > Update Center > Check for Updates > Update.
Armoury Crate is Asus’ all-in-one app for PC control, adjusting RGB lighting, fan curves, performance profiles, and more. It can also manage your Asus peripherals and software updates.
Asus’ Armoury Crate app.
Mark Hachman / Foundry
Armoury Crate is handy, but this security flaw makes it very handy for hackers too. Cataloged as CVE-2025-3464, the Armoury Crate vulnerability is rated 8.8 out of 10 on the severity scale.
You can find the full technical details over on BleepingComputer, but the gist is that Asus relied on hardcoded security verification for its apps. Hackers can exploit this to leap-frog into full low-level system access, which can then be used to completely pwn your operating system.
You’d only be vulnerable to this exploit if the attacker somehow managed to gain access to your PC already. That’s good, as it greatly reduces the odds of infection, but it also means any malware you pick up could then parlay that rogue access to launch this devastating Armoury Crate bug.
Bottom line? If you’re on an Asus gaming PC, go update your Armoury Crate app right now, then be sure to run a full antivirus scan afterwards. Hackers haven’t been spotted leveraging this exploit in the wild, but better to be safe than sorry.
Further reading: These Windows security mistakes can wreck your PC
