Multiple vulnerabilities were identified in ASUS Router with AiCloud. A remote attacker could exploit this vulnerability (CVE-2025-2492) to cause security restriction bypass and be able to perform arbitrary operations on affected devices.

AiCloud — is a cloud remote access feature built into many Asus routers and turns them into private cloud servers.

Asus has already released patches for several firmware branches, including: 3.0.0.4_382, 3.0.0.4_386, 3.0.0.4_388 and 3.0.0.6_102, and recommend that users apply security updates.

Source: asus.com