Oasis Ticket Sales Scams: How to Stay Safe
During our weekly meetings with the banking industry and Police Scotland, we continue to see a significant increase in ticket scams over the last three…
ASUS Routers Affected by Critical Remote Authentication Bypass Vulnerability
Technology giant ASUS has recently addressed a critical security flaw that impacts several of its popular router models. The vulnerability, tracked as CVE-2024-3080, is a remote authentication bypass issue that could allow a remote attacker to log into vulnerable devices without any authentication.
The flaw has been assigned a CVSS v3.1 severity score of 9.8 out of 10, indicating it is a critical risk. If successfully exploited, the vulnerability could enable an attacker to take full control of the affected router.
Affected Router Models
The remote authentication bypass vulnerability impacts the following ASUS router models:
- ZenWiFi XT8
- ZenWiFi XT8 V2
- RT-AX88U
- RT-AX58U
- RT-AX57
- RT-AC86U
- RT-AC68U
ASUS has released firmware updates to address CVE-2024-3080 for all the affected models. Users are strongly advised to update their routers to the latest available firmware version as soon as possible.
In addition to CVE-2024-3080, ASUS has also patched another critical flaw, CVE-2024-3912, which is an arbitrary firmware upload vulnerability. This could allow a remote unauthenticated attacker to execute commands on vulnerable devices. Multiple router models were affected, with some older end-of-life devices recommended for replacement if the firmware cannot be updated.
Mitigating the Risk
While awaiting the opportunity to install the firmware updates, ASUS recommends some temporary mitigation steps:
- Ensure strong passwords or a passphrase (over 15 non-consecutive characters) are set for the router admin account and WiFi network
- Disable remote access to the router admin interface from the internet (WAN)
- Disable port forwarding, DDNS, VPN server, DMZ, and port triggering features.
Users should also update the Download Master utility on their ASUS routers to version 3.1.0.114 or later to address several other vulnerabilities.
The Importance of Prompt Updates
These vulnerabilities highlight the importance of keeping router firmware up-to-date. Routers are an essential piece of network infrastructure, and unpatched flaws can provide attackers with easy access to the local network and connected devices.
Consumers and businesses alike should ensure they have processes to monitor for router firmware updates and apply them promptly. Enabling automatic updates is highly recommended where possible.
If you suspect your router may have been compromised, immediately disconnect it from the internet and seek assistance from a cyber security professional to investigate and remediate the issue.
Related articles
Alert: Unpatched Microsoft Office Vulnerability Exposes NTLM Hashes
Microsoft has recently disclosed a significant security vulnerability affecting multiple versions of its Office suite, including Office 2016, Office 2019, Office LTSC 2021 and Microsoft…
Public Alert: Windows 11 End of Support – Action Required
Microsoft has issued an important reminder that multiple editions of Windows 11 will reach the end of their support lifecycle on 8 October 2024. This…