CVE-2026-13385
CVSS Score
0.0
EPSS Score
0.1%
EPSS Percentile
1th
An Improper Validation of Integrity Check Value and Improper Certificate Validation in certain ASUS router models allows a remote man-in-the-middle(MITM) user to make the router download and execute arbitrary command via a spoofed server. Refer to the ' Security Update for ASUS Router Firmware ' section on the ASUS Security Advisory for more information.
| CWE | CWE-354 CWE-295 |
| Vendor | asus |
| Product | router |
| Published | Jul 15, 2026 |
| Last Updated | Jul 16, 2026 |
Stay Ahead of the Next One
Get instant alerts for asus router
Be the first to know when new unknown vulnerabilities affecting asus router are published — delivered to Slack, Telegram or Discord.
Get Free Alerts →
Free · No credit card · 60 sec setup
Affected Versions
ASUS / Router
3.0.0.4_386 series 3.0.0.4_388 series 3.0.0.6_102 series