Asus Latest Vulnerabilities

December 4

Crashes Occur in Certain ASUS Router Models Due to Improper Input Validation

CVE-2024-11985
ASUS

August 15

Asus Routers Hit by Command Injection Vulnerability

CVE-2024-42757
Asus

June 14

ASUS Routers Vulnerable to Arbitrary Firmware Upload Attack

CVE-2024-3912
AsusDsl-n17u9.8CRITICAL

Buffer Overflow Vulnerability in ASUS Download Master Allows Arbitrary System Command Execution

CVE-2024-31163
AsusDownload Master7.2HIGH

ASUS Download Master Vulnerability Allows Arbitrary System Command Execution

CVE-2024-31162
AsusDownload Master7.2HIGH

ASUS Download Master Upload Vulnerability Allows Remote Execution of Arbitrary System Commands

CVE-2024-31161
AsusDownload Master7.2HIGH

ASUS Download Master vulnerable to Stored Cross-site scripting attacks

CVE-2024-31160
AsusDownload Master4.8MEDIUM

ASUS Download Master Vulnerable to Reflected Cross-site Scripting Attacks

CVE-2024-31159
AsusDownload Master4.8MEDIUM

ASUS Router Authentication Bypass Vulnerability Allows Unauthorized Access

CVE-2024-3080
AsusZenwifi Xt89.8CRITICAL

Buffer Overflow Vulnerabilities Affect ASUS Routers

CVE-2024-3079
AsusZenwifi Xt87.2HIGH

May 20

ASUS Routers Vulnerable to Code Execution Flaw

CVE-2024-0401
AsusExpertwifi7.2HIGH

May 3

ASUS RT-AX92U lighttpd mod_webdav.so SQL Injection Information Disclosure Vulnerability

CVE-2023-35720
AsusRt-ax92u6.5MEDIUM

April 26

Arbitrary Code Execution Vulnerability in ASUS Fan_Xpert Before v.10013

CVE-2024-30804
ASUS

Root Access Vulnerability in Asus RT-N12+ B1 Routers

CVE-2024-28326
Asus

Asus Router Stores Credentials in Cleartext, Leaving Users Vulnerable to Attacks

CVE-2024-28325
Asus

Asus Router Stores User Passwords in Plaintext, Leaving Users Vulnerable to Attacks

CVE-2024-28327
Asus

CSV Injection Vulnerability in Asus RT-N12+ Router Allows Arbitrary Commands Execution

CVE-2024-28328
Asus

April 15

ASUS WiFi Routers Vulnerable to OS Command Injection Attacks

CVE-2024-1655
AsusExpertwifi Ebm638.8HIGH

January 19

ASUS Armoury Crate - Arbitrary File Write

CVE-2023-5716
AsusArmoury Crate9.8CRITICAL

November 9

CVE-2023-47008
AsusRt-ax57 Firmware9.8CRITICAL

CVE-2023-47007
AsusRt-ax57 Firmware9.8CRITICAL

CVE-2023-47005
AsusRt-ax57 Firmware9.8CRITICAL

CVE-2023-47006
AsusRt-ax57 Firmware9.8CRITICAL

November 3

ASUS RT-AX55 - command injection - 1

CVE-2023-41345
AsusRt-ax558.8HIGH

ASUS RT-AX55 - command injection - 2

CVE-2023-41346
AsusRt-ax558.8HIGH

ASUS RT-AX55 - command injection - 4

CVE-2023-41348
AsusRt-ax558.8HIGH

ASUS RT-AX55 - command injection - 3

CVE-2023-41347
AsusRt-ax558.8HIGH

September 18

ASUS RT-AX88U - externally-controlled format string

CVE-2023-41349
ASUSRT-AX88U8.8HIGH

September 11

CVE-2023-39780
AsusRt-ax55 Firmware8.8HIGH

September 7

ASUS RT-AX55、RT-AX56U_V2 - Format String - 3

CVE-2023-39240
AsusRt-ax557.2HIGH

ASUS RT-AX55、RT-AX56U_V2、RT-AC86U - Format String - 2

CVE-2023-39239
AsusRt-ax557.2HIGH

Format String Vulnerability Affects ASUS RT-AX56U V2, Allows Remote Code Execution

CVE-2023-39238
AsusRt-ax557.2HIGH

ASUS RT-AC86U - Command injection vulnerability - 2

CVE-2023-38032
AsusRt-ac86u8.8HIGH

ASUS RT-AC86U - Command injection vulnerability - 3

CVE-2023-38033
AsusRt-ac86u8.8HIGH

ASUS RT-AC86U - Command injection vulnerability - 5

CVE-2023-39237
AsusRt-ac86u8.8HIGH

ASUS RT-AC86U - Command injection vulnerability - 4

CVE-2023-39236
AsusRt-ac86u8.8HIGH

ASUS RT-AC86U - Command injection vulnerability - 1

CVE-2023-38031
AsusRt-ac86u8.8HIGH

August 8

CVE-2023-39086
AsusRt-ac66u B1 Firmware7.5HIGH

July 31

ASUS RT-AX88U - Stored XSS

CVE-2023-34360
AsusRt-ax88u8.2HIGH

ASUS RT-AX88U - Out-of-bounds Read - 1

CVE-2023-34358
AsusRt-ax88u7.5HIGH

ASUS RT-AX88U - Out-of-bounds Read - 2

CVE-2023-34359
AsusRt-ax88u7.5HIGH

July 26

CVE-2023-26911
AsusArmoury Crate7.8HIGH

July 21

ASUS RT-AX56U V2 & RT-AC86U - Format String - 2

CVE-2023-35087
AsusRt-ax56u V29.8CRITICAL

ASUS RT-AX56U V2 & RT-AC86U - Format String -1

CVE-2023-35086
AsusRt-ax56u V2👾7.2HIGH

June 12

CVE-2023-34941
AsusRt-n10lx Firmware5.4MEDIUM

CVE-2023-34940
AsusRt-n10lx Firmware7.5HIGH

CVE-2023-34942
AsusRt-n10lx Firmware7.5HIGH

June 2

ASUS RT-AC86U - Buffer Overflow

CVE-2023-28703
AsusRt-ac86u7.2HIGH

ASUS RT-AC86U - Command Injection

CVE-2023-28702
ASUSRT-AC86U8.8HIGH

May 2

CVE-2023-29772
AsusRt-ac51u Firmware5.2MEDIUM

February 26

Remote Attackers Can Execute Arbitrary Code via SNMP in ASUS Firmware

CVE-2023-26602
AsusAsmb8-ikvm Firmware👾9.8CRITICAL

February 15

CVE-2022-42455
AsusArmoury Crate7.8HIGH

February 3

CVE-2021-37317
AsusRt-ac68u Firmware9.1CRITICAL

CVE-2021-37316
AsusRt-ac68u Firmware7.5HIGH

CVE-2021-37315
AsusRt-ac68u Firmware9.1CRITICAL

January 10

CVE-2022-35401
AsusRt-ax82u9CRITICAL

CVE-2022-38105
AsusRt-ax82u7.5HIGH

CVE-2022-38393
AsusRt-ax82u7.5HIGH

December 14

CVE-2022-44898
AsusAura Sync7.8HIGH

December 1

OS command injection in ASUS M25 NAS

CVE-2022-4221
AsusNas-m259.8CRITICAL

October 19

CVE-2020-23648
AsusRt-n12e Firmware7.5HIGH

October 18

CVE-2022-36439
AsusSystem Control Interface6MEDIUM

CVE-2022-36438
AsusAsusswitch7.8HIGH

October 6

CVE-2021-40556
AsusRt-ax56u Firmware8.8HIGH

September 28

ASUS Armoury Crate Service - Arbitrary File Creation via Elevation of Privilege Flaw

CVE-2022-38699
AsusArmoury Crate Service5.9MEDIUM

September 26

CVE-2021-41437
AsusRt-ax88u Firmware6.5MEDIUM

July 21

CVE-2022-35899
AsusAura Ready Game Softwa...👾7.8HIGH

July 5

CVE-2021-43702
AsusZenwifi Xd4s Firmware9CRITICAL

July 1

CVE-2022-32988
AsusDsl-n14u-b1 Firmware👾5.4MEDIUM

June 20

ASUS Control Center - Broken Access Control

CVE-2022-26668
AsusControl Center7.3HIGH

ASUS Control Center - SQL Injection

CVE-2022-26669
AsusControl Center8.8HIGH

June 17

CVE-2022-31874
AsusRt-n53 Firmware9.8CRITICAL

May 11

CVE-2021-3254
AsusDsl-n14u-b1 Firmware7.5HIGH

April 22

ASUS WebStorage - Use of Hard-coded Credentials

CVE-2022-26672
AsusWebstorage7.3HIGH

ASUS RT-AX88U - Format String

CVE-2022-26674
AsusRt-ax88u9.8CRITICAL

ASUS RT-AX88U - Stored XSS

CVE-2022-26673
AsusRt-ax88u5.4MEDIUM

April 7

ASUS RT-AX56U - Stack overflew

CVE-2022-23973
AsusRt-ax56u8.8HIGH

ASUS RT-AC86U - Command Injection

CVE-2022-25597
AsusRt-ac86u8.8HIGH

ASUS RT-AX56U - Path Traversal

CVE-2022-23970
AsusRt-ax56u8.1HIGH

ASUS RT-AC86U - Improper Input Validation

CVE-2022-25595
AsusRt-ac86u6.5MEDIUM

ASUS RT-AX56U - SQL Injection

CVE-2022-23972
AsusRt-ax56u8.8HIGH

ASUS RT-AC86U - Heap-based buffer overflow

CVE-2022-25596
AsusRt-ac86u8.8HIGH

ASUS RT-AX56U - Path Traversal

CVE-2022-23971
AsusRt-ax56u8.1HIGH

March 23

CVE-2021-45757
AsusRt-ac68u Firmware7.5HIGH

CVE-2021-45756
AsusRt-ac68u Firmware9.8CRITICAL

March 10

CVE-2022-22814
AsusMyasus👾9.8CRITICAL

February 17

CVE-2021-46247
AsusCmax6000 Firmware7.5HIGH

January 31

ASUS Armoury Crate & Aura Creator Installer之ROG Live Service - Improper Link Resolution Before File Access

CVE-2022-22262
AsusArmoury Crate & Aura C...7.7HIGH

January 21

ASUS VivoMini/Mini PC - improper input validation

CVE-2022-21933
AsusVc65-c16.7MEDIUM

January 14

ASUS RT-AX56U - Path Traversal

CVE-2022-22054
AsusRt-ax56u6.5MEDIUM

January 3

CVE-2021-46109
AsusRt-ac52u B1 Firmware6.1MEDIUM

ASUS RT-AX56U Router - Stack-based buffer overflow

CVE-2021-44158
AsusRt-ax56u8HIGH

December 28

CVE-2019-20082
AsusRt-n53 Firmware9.8CRITICAL

November 19

CVE-2021-41435
AsusGt-ax11000 Firmware9.8CRITICAL

CVE-2021-41436
AsusGt-ax11000 Firmware7.5HIGH

November 15

ASUS P453UJ - Improper Restriction of Operations within the Bounds of a Memory Buffer

CVE-2021-41289
AsusP453uj BiOS6.3MEDIUM

November 12

ASUS GT-AXE11000, RT-AX3000, RT-AX55, RT-AX58U, TUF-AX3000 - Improper Authentication

CVE-2021-37910
AsusGt-axe11000👾3.7LOW

October 18

CVE-2021-42055
AsusUx582lr Firmware6.8MEDIUM

September 27

CVE-2021-40981
AsusArmoury Crate Lite Ser...7.3HIGH

May 6

CVE-2021-32030
AsusGt-ac2900 Firmware9.8CRITICAL