ASUS has issued firmware updates to address nine security vulnerabilities, including a critical authentication bypass flaw in AiCloud-enabled routers. Users are urged to update their devices immediately and disable remote services to prevent exploitation. #CVE-2025-59366 #OperationWrtHug
Keypoints
- ASUS released firmware updates to fix nine security vulnerabilities affecting their routers.
- The critical flaw CVE-2025-59366 allows remote attackers to execute functions without authorization.
- Exploit chains involve path traversal and OS command injection, requiring no user interaction.
- Users are advised to disable Internet-accessible services and use strong passwords for added security.
- Previous vulnerabilities have led to global campaigns like Operation WrtHug, hijacking thousands of routers.