ASUS released a new firmware update to fix a vulnerability affecting seven router models, which could be exploited by remote attackers to log in to the devices.
The vulnerability CVE-2024-3080 (CVSS v3.1 score: 9.8 “critical”) is an authentication bypass flaw. It enables remote attackers without authentication to control the device.
By infosecbulletin
/ Monday , June 24 2024
LockBit claimed that it breached Federal Reserve Board (Federalreserve.gov), the central banking system of the United States and exfiltrated 33...
Read More
By infosecbulletin
/ Monday , June 24 2024
Cyber attack compromised Indonesia's national data center, causing trouble with immigration checks at airports. Attacker demanded an $8 million ransom,...
Read More
By infosecbulletin
/ Sunday , June 23 2024
ESET Issued security patch for privilege escalation flaw in its Windows security products. This flaw, called CVE-2024-2003 (CVSS 7.3), was...
Read More
By infosecbulletin
/ Saturday , June 22 2024
A threat offer to sell a zero-day exploit for Atlassian's Jira in a underground forum. This exploit can be used...
Read More
By infosecbulletin
/ Friday , June 21 2024
The US plans to ban the sale of Kaspersky antivirus software due to its alleged ties to the Kremlin. Gina...
Read More
By infosecbulletin
/ Friday , June 21 2024
A group believed to be linked to China has hacked multiple telecom operators in an Asian country since 2021, according...
Read More
By infosecbulletin
/ Thursday , June 20 2024
Certified Information Systems Auditor (CISA) is a globally recognized professional certification for information systems audit, control, and security. It's offered...
Read More
By infosecbulletin
/ Thursday , June 20 2024
DataDog Security Labs found a worrying campaign targeting Amazon Web Services (AWS), showing a new wave of harmful activity aimed...
Read More
By infosecbulletin
/ Wednesday , June 19 2024
CISA and the FBI released guidance, Modern Approaches to Network Access Security, with support from other organizations including New Zealand’s...
Read More
By infosecbulletin
/ Tuesday , June 18 2024
On June 18, 2024, CISA released an advisory about Industrial Control Systems (ICS). These advisories give important information about security...
Read More
ASUS says the issue impacts the following router models:
XT8 (ZenWiFi AX XT8) – Mesh WiFi 6 system with fast speeds up to 6600 Mbps, support for AiMesh, advanced security, seamless roaming, and parental controls.
XT8_V2 (ZenWiFi AX XT8 V2) – Updated version of the XT8, maintaining similar features with enhancements in performance and stability.
RT-AX88U – High-speed router with 8 LAN ports, advanced security features, and optimized gaming and streaming performance.
RT-AX58U – Dual-band WiFi 6 router with fast 3000 Mbps speeds, AiMesh support, advanced security features, and hassle-free multi-device connectivity.
RT-AX57 – Dual-band WiFi 6 router for basic usage purposes, providing speeds of up to 3000 Mbps, with AiMesh support and essential parental controls.
RT-AC86U – Dual-band WiFi 5 router with high speeds, security features, and enhanced gaming capabilities.
RT-AC68U – Dual-band WiFi 5 router offering up to 1900 Mbps, with AiMesh support, AiProtection, and robust parental controls.
ASUS recommends updating your device to the latest firmware version. Instructions are available on this FAQ page.
Taiwan’s CERT recently warned about a critical vulnerability called CVE-2024-3912 that allows attackers to upload firmware and execute system commands on the device without authentication.