Asus releases important patches for the firmware of seven routers. They contain a security vulnerability that allows a hacker to log in remotely.

Asus releases an update for the firmware of seven routers. This update fixes a critical vulnerability known as CVE-2024-3080. The bug is rated 9.8 and is therefore classified as critical.

The leak is therefore serious. It allows attackers to remotely bypass authentication mechanisms, easily log into a router and take control of the device. The following devices are vulnerable:

• ZenWiFi XT8: a WiFi 6 mesh system.
• ZenWiFi XT8_V2: the new version of the above system.
• RT-AX88U: a dual-band Wi-Fi 6 router.
• RT-AX58U: a lighter dual-band Wi-Fi 6 router.
• RT-AX57: a basic version of Asus’s Wifi 6 series.
• RT-AC86U: A WiFi 5 router.
• RT-AC68U: A rudimentary WiFi 5 router.

With the exception of the mesh system, the bug affects relatively entry-level Asus models. This may mean that the devices are managed by people who are not actively behind the control of the IT infrastructure and carries risks. Finally, updating the router quickly is important.

Update or disable things

If you can’t update the firmware right away, you can temporarily protect yourself by blocking access to the admin portal from the Internet. This is actually a good idea anyway, unless there’s a good reason you want to tinker with your router’s firmware remotely. It’s also best to disable port forwarding, DDNS, the VPN server, and the DMZ.

These are just band-aids on the wound. The only really good solution: update your router’s firmware immediately. This device is the gateway to your network and is therefore vulnerable to abuse. Fortunately, the affected devices are mainly aimed at home use. On the other hand, teleworking is the norm today and many business devices of home workers will also be connected to the Internet via the affected routers.