ASUS warns of new critical auth-bypass flaw in AiCloud routers www.bleepingcomputer.com/news/secu…
ASUS has issued new firmware updates to address nine security vulnerabilities, including a critical authentication bypass flaw affecting routers with the AiCloud feature enabled.
AiCloud is a remote-access service built into many ASUS routers, allowing users to stream media or access files from their personal devices as if they were cloud-hosted.
According to the company, the critical vulnerability CVE-2025-59366 stems from an “unintended side effect” of the router’s Samba functionality. This flaw may allow certain functions to be executed without proper authorization.
In its Monday advisory, ASUS urged all customers to update their router firmware to the latest version immediately to ensure protection.
