Security News ASUS warns of critical auth bypass flaw in routers using AiCloud

Gandalf_The_Grey

Gandalf_The_Grey

Level 85
Thread author
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Apr 24, 2016
7,822
Content source
https://www.bleepingcomputer.com/news/security/asus-warns-of-critical-auth-bypass-flaw-in-routers-using-aicloud/
ASUS is warning about an authentication bypass vulnerability in routers with AiCloud enabled that could allow remote attackers to perform unauthorized execution of functions on the device.

The vulnerability, tracked under CVE-2025-2492 and rated critical (CVSS v4 score: 9.2), is remotely exploitable via a specially crafted request and requires no authentication, making it particularly dangerous.

"An improper authentication control vulnerability exists in certain ASUS router firmware series," reads the vendor's bulletin.
Click to expand...
The vulnerability discovered in AiCloud impacts a broad range of models, with ASUS releasing fixes for multiple firmware branches, including 3.0.0.4_382 series, 3.0.0.4_386 series, 3.0.0.4_388 series, and 3.0.0.6_102 series.

Users are recommended to upgrade to the latest firmware version available for their model, which they can find on the vendor's support portal or the product finder page. Detailed instructions on how to apply firmware updates are available here.

ASUS also advises users to use distinct passwords to secure their wireless network and router administration page, and make sure they're at least 10 characters long with a mix of letters, numbers, and symbols.

Impacted users of end-of-life products are advised to disable AiCloud entirely and turn off internet access for WAN, port forwarding, DDNS, VPN server, DMZ, port triggering, and FTP services.
Click to expand...
www.bleepingcomputer.com

ASUS warns of critical auth bypass flaw in routers using AiCloud

ASUS is warning about an authentication bypass vulnerability in routers with AiCloud enabled that could allow remote attackers to perform unauthorized execution of functions on the device.
www.bleepingcomputer.com www.bleepingcomputer.com
 
  • Like
Reactions: Victor M, simmerskool and harlan4096
Game Of Thrones

Game Of Thrones

Level 7
Verified
Well-known
Jun 5, 2014
319
the best routers in the market with really good support and good response to security vulnerability, actually asus products all have good quality
 

Similar threads

vtqhtr413
    • +Reputation
    • Like
Security News ASUS warns of critical remote authentication bypass on 7 routers
Replies
1
Views
1,980
Security News
blackice
blackice
Gandalf_The_Grey
    • Like
Security News Netgear warns users to patch critical WiFi router vulnerabilities
Replies
0
Views
399
Security News
Gandalf_The_Grey
Gandalf_The_Grey
Gandalf_The_Grey
    • Wow
    • Like
Security News DrayTek routers worldwide go into reboot loops over weekend
Replies
0
Views
592
Security News
Gandalf_The_Grey
Gandalf_The_Grey

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top