Redazione RHC : 17 November 2025 18:22
Asus has released an emergency firmware update for several DSL router models. The patch addresses a critical vulnerability that allows attackers to take complete control of devices without authentication.
The vulnerability, identified as CVE-2025-59367, affects DSL-AC51, DSL-N16, and DSL-AC750 routers. The issue allows remote attackers to access unprotected devices accessible over the internet. The attack requires no preparation or user interaction; all that is needed is knowledge of the vulnerable router’s IP address.
“An authentication bypass vulnerability has been discovered in certain DSL routers that could allow remote attackers to gain unauthorized access to the device,” Asus developers warn .
The company strongly recommends owners of vulnerable devices to immediately install firmware updates to version 1.1.2.3_1010.
If for some reason you cannot update your device immediately, the manufacturer offers temporary security measures .
First, disable all Internet-accessible services: remote access via WAN, port forwarding, DDNS, VPN server, DMZ, port triggers, and FTP.
ASUS also reminds users to use strong passwords for the router’s admin panel and Wi-Fi networks, to regularly check for firmware updates, and to avoid using the same login credentials for different services.
Redazione