Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

ASUS — Vulnerabilities & Security Advisories 138

Browse all 138 CVE security advisories affecting ASUS. AI-powered Chinese analysis, POCs, and references for each vulnerability.

ASUS operates primarily as a manufacturer of consumer electronics, networking hardware, and computer components, serving both individual users and enterprise clients. Its product portfolio, which includes routers, motherboards, and embedded systems, frequently exposes devices to remote code execution, cross-site scripting, and privilege escalation vulnerabilities. These flaws often stem from insecure default configurations, unpatched firmware, and weak authentication mechanisms within web management interfaces. Historically, the company has faced scrutiny over delayed security updates and the persistence of critical defects in widely deployed network equipment. Notable incidents involve compromised routers that allowed attackers to gain administrative access or intercept traffic, highlighting systemic issues in long-term support and secure development practices. With numerous recorded CVEs, ASUS continues to address these legacy weaknesses while navigating the complex security demands of its diverse hardware ecosystem.

Top products by ASUS: BMC firmware for Z10PR-D16 BMC firmware for ASMB9-iKVM Router Armoury Crate RT-AC86U RT-AX55 RT-AX56U RT-AX88U Download Master RT-AX82U ASCI DriverHub MyASUS RT-AX56U V2 Control Center ASUS Business System Control Interface ZenWiFi XT8 RP-AC52 Access Point HG100 firmware ASUS Business Manager ASUS System Control Interface B460 series live update DSL-AC51 Driver( Keyboard & Mouse ) AI Suite Member Center(华硕大厅) AsusPTPFilter RT-N12E DSL-N17U
CVE IDTitleCVSSSeverityPublished
CVE-2023-39240 ASUS RT-AX55、RT-AX56U_V2 - Format String - 3 — RT-AX55CWE-134 7.2 High2023-09-07
CVE-2023-39239 ASUS RT-AX55、RT-AX56U_V2、RT-AC86U - Format String - 2 — RT-AX55CWE-134 7.2 High2023-09-07
CVE-2023-39238 ASUS RT-AX55、RT-AX56U_V2 - Format String - 1 — RT-AX55CWE-134 7.2 High2023-09-07
CVE-2023-39237 ASUS RT-AC86U - Command injection vulnerability - 5 — RT-AC86UCWE-78 8.8 High2023-09-07
CVE-2023-39236 ASUS RT-AC86U - Command injection vulnerability - 4 — RT-AC86UCWE-78 8.8 High2023-09-07
CVE-2023-38033 ASUS RT-AC86U - Command injection vulnerability - 3 — RT-AC86UCWE-78 8.8 High2023-09-07
CVE-2023-38032 ASUS RT-AC86U - Command injection vulnerability - 2 — RT-AC86UCWE-78 8.8 High2023-09-07
CVE-2023-38031 ASUS RT-AC86U - Command injection vulnerability - 1 — RT-AC86UCWE-78 8.8 High2023-09-07
CVE-2023-34360 ASUS RT-AX88U - Stored XSS — RT-AX88UCWE-79 8.2 High2023-07-31
CVE-2023-34359 ASUS RT-AX88U - Out-of-bounds Read - 2 — RT-AX88UCWE-125 7.5 High2023-07-31
CVE-2023-34358 ASUS RT-AX88U - Out-of-bounds Read - 1 — RT-AX88UCWE-125 7.5 High2023-07-31
CVE-2023-35087 ASUS RT-AX56U V2 & RT-AC86U - Format String - 2 — RT-AX56U V2CWE-134 9.8 Critical2023-07-21
CVE-2023-35086 ASUS RT-AX56U V2 & RT-AC86U - Format String -1 — RT-AX56U V2CWE-134 7.2 High2023-07-21
CVE-2023-28703 ASUS RT-AC86U - Buffer Overflow — RT-AC86UCWE-121 7.2 High2023-06-02
CVE-2023-28702 ASUS RT-AC86U - Command Injection — RT-AC86UCWE-78 8.8 High2023-06-02
CVE-2022-35401 ASUS RT-AX82U 授权问题漏洞 — RT-AX82UCWE-324 9.8 -2023-01-10
CVE-2022-38105 ASUS RT-AX82U 缓冲区错误漏洞 — RT-AX82UCWE-119 7.5 -2023-01-10
CVE-2022-38393 ASUS RT-AX82U 缓冲区错误漏洞 — RT-AX82UCWE-125 7.5 -2023-01-10
CVE-2022-4221 OS command injection in ASUS M25 NAS — NAS-M25CWE-78 9.8 Critical2022-12-01
CVE-2022-38699 ASUS Armoury Crate Service - Arbitrary File Creation via Elevation of Privilege Flaw — Armoury Crate ServiceCWE-59 5.9 Medium2022-09-28
CVE-2022-26669 ASUS Control Center - SQL Injection — Control CenterCWE-89 8.8 High2022-06-20
CVE-2022-26668 ASUS Control Center - Broken Access Control — Control CenterCWE-269 7.3 High2022-06-20
CVE-2022-26674 ASUS RT-AX88U - Format String — RT-AX88UCWE-134 9.8 Critical2022-04-22
CVE-2022-26673 ASUS RT-AX88U - Stored XSS — RT-AX88UCWE-79 5.4 Medium2022-04-22
CVE-2022-26672 ASUS WebStorage - Use of Hard-coded Credentials — WebStorageCWE-798 7.3 High2022-04-22
CVE-2022-25597 ASUS RT-AC86U - Command Injection — RT-AC86UCWE-78 8.8 High2022-04-07
CVE-2022-25596 ASUS RT-AC86U - Heap-based buffer overflow — RT-AC86UCWE-787 8.8 High2022-04-07
CVE-2022-25595 ASUS RT-AC86U - Improper Input Validation — RT-AC86UCWE-20 6.5 Medium2022-04-07
CVE-2022-23973 ASUS RT-AX56U - Stack overflew — RT-AX56UCWE-787 8.8 High2022-04-07
CVE-2022-23972 ASUS RT-AX56U - SQL Injection — RT-AX56UCWE-89 8.8 High2022-04-07

This page lists every published CVE security advisory associated with ASUS. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.