CISA added a critical Asus Live Update supply‑chain compromise (CVE‑2025‑59374) to KEV, tied to tampered installers distributed before 2021 The flaw stems from the 2018–2019 incident, where attackers ...