Primary

Context

ASUS Routers AiCloud Improper Input Insertion Vulnerability Leading to Arbitrary Command Execution

Vulnerability

A vulnerability allowing arbitrary command execution has been identified in the AiCloud feature of certain ASUS router models. This issue arises from improper input insertion and affects several different router models. Users can refer to the ASUS Security Advisory for detailed information about the specific models impacted.

Impact

Exploitation of this vulnerability could lead to unauthorized arbitrary command execution on the affected router.

Remediation

ASUS has released a security update for this vulnerability. Users can download the latest firmware from the ASUS Support website or through the ASUS Router App.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

4.8

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

7.5

exploitability

4.8

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

ASUS Routers AiCloud Improper Input Insertion Vulnerability Leading to Arbitrary Command Execution

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating