- ASUS fixes CVE-2025-593656, a critical authentication bypass bug in AiCloud-enabled routers.
- The vulnerability allows RCE to be used without authentication; Users urged to update firmware or disable risky services
- Overall, the update addressed nine flaws, highlighting routers as prime targets for cyberattacks.
Asus has fixed a critical vulnerability in its router Firmware that can be used in remote code execution (RCE) attacks. Given the potential risk, users are advised to apply the patch immediately.
In a security update, Asus said it has fixed CVE-2025-593656, a critical authentication bypass vulnerability affecting the AiCloud remote access/cloud feature found on some routers.
The problem stems from its interaction with Samba's file sharing code, which has been compromised and allowed unauthenticated attackers to run OS commands without valid credentials.
Qilin takes the blame
The bug has a severity rating of 9.2 out of 10 (critical) and affects the following firmware versions:
3.0.0.4_386
3.0.0.4_388
3.0.0.6_102
It's difficult to determine the exact list of affected models, but in general – any Asus router that includes and enables AiCloud is potentially vulnerable when running affected firmware versions. This also includes routers that have reached the end of their useful life.
Users should apply the patch as soon as possible or, alternatively, disable AiCloud, Samba/file sharing, dial-up WAN, port forwarding, and any other Internet-connected services. It is also recommended to update the administrator password and Wi-Fi password to something more secure.
While this is definitely the most dangerous flaw, it's not the only flaw Asus has addressed in this security update. According to the report, a total of 9 vulnerabilities have been fixed this time, most of which are of medium or high severity.
As the gateway for all data passing through the network, a router is the primary target of many cyber attacks. Asus is one of the world's most popular hardware manufacturers whose devices are often abused, so patching is considered essential. In April of this year, the company fixed a separate critical authentication bypass flaw that also affected routers with AiCloud enabled.
Additionally, recent reports suggest that the cybercriminals involved in the WrtHug attacks also abused vulnerabilities found in ASUS routers.
By using BeepingComputer
The best antivirus for any budget
Follow TechRadar on Google News. And add us as your preferred source to get our expert news, reviews and opinions in your feeds. Be sure to click the “Subscribe” button!
And of course you can also Follow TechRadar on TikTok for news, reviews, unboxing videos and get regular updates from us on whatsapp too much.
