CVE-2025-2492

UNKNOWN 0.0

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

An improper authentication control vulnerability exists in AiCloud. This vulnerability can be triggered by a crafted request, potentially leading to unauthorized execution of functions. Refer to the 'ASUS Router AiCloud vulnerability' section on the ASUS Security Advisory for more information.

CWE	CWE-288
Vendor	asus
Product	router
Published	Apr 18, 2025
Last Updated	Feb 24, 2026

Stay Ahead of the Next One

Get instant alerts for asus router

Be the first to know when new unknown vulnerabilities affecting asus router are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

ASUS / Router

3.0.0.4_382 series 3.0.0.4_386 series 3.0.0.4_388 series 3.0.0.6_102 series

References

NVD ↗ CVE.org ↗ EPSS Data ↗

asus.com: https://www.asus.com/content/asus-product-security-advisory/

Credits

🔍 Nanyu Zhong of VARAS@IIE 🔍 NICTER Analysis Team of Cybersecurity Research Institute, National Institute of Information and Communications Technology