ASUS recently patched a vulnerability in routers enabled with AiCloud that could allow executing unauthorized commands on the target device. Users must ensure updating the routers with the latest firmware release to receive the patch and avoid the threats.
Serious Security Vulnerability Affected ASUS Routers With AiCloud
ASUS routers had a severe security vulnerability risking users’ security. According to its recent advisory, ASUS patched a critical auth bypass vulnerability in its routers with AiCloud enabled. The flaw, identified as CVE-2025-2492, received a critical severity rating with a CVSS score of 9.2.
Describing the issue, Asus stated in its advisory that the vulnerability existed due to improper authentication control. An adversary could trigger the flaw by sending maliciously crafted requests to the target router. A successful exploitation of the vulnerability could enable the attacker to execute malicious functions on the device without authorization.
The firm patched this vulnerability with the new firmware updates (released after February 2025) for 3.0.0.4_382, 3.0.0.4_386, 3.0.0.4_388, 3.0.0.6_102 series. Users must ensure updating their devices to these updates to receive the patch and avoid potential attacks.
Apart from updating the firmware, ASUS also advised users to strong passwords for their routers, including alphanumeric+symbols combination. The firm also recommends setting up different passwords for router administration page and the wireless network.
Recommended Mitigations for EOL Routers
While updating the router firmware is crucial to patch this vulnerability, the fix might not be available for routers that have reached their end-of-life. For such routers that are ineligible for further updates, ASUS suggests setting up strong WiFi and login passwords and disabling AiCloud. Moreover, it also advised such users to disable any services accessible from the internet such as port forwarding, port triggering, FTP, DDNS, and VPN server.
For now, no reports regarding active exploitation attempts for this vulnerability have been received. Nonetheless, given that the patch is already available, and the vulnerability details are public, patching and securing vulnerable routers is crucial to protect all devices connected to the network.
AiCloud is a cloud-based feature enabling remote access on ASUS routers. This feature facilitates users to access drives connected to the router from anywhere as long as they are connected to the particular network. Besides accessing drives, users can also use AiCloud to share files, sync between networks, and stream media.
Let us know your thoughts in the comments.
