ASUS routers RT-AX55, AX56U_V2 and RT-AC86U vulnerable to critical remote code execution flaws (CVSS 9.8)

The Asus RT-AX55 and AX56U_V2 are same hardware and firmware but different market only.

 

The AX56U are different hardware and firmware. And also, the AX56U latest firmware on ASUS RT-AX56U 韌體版本 3.0.0.4.386.51665

Version 3.0.0.4.386.51665

74.75 MB

2023/05/18

https://www.asus.com/hk/networking-iot-servers/wifi-routers/asus-wifi-routers/rt-ax56u/helpdesk_bios/?model2Name=RT-AX56U

 

 

Firmware:

ASUS RT-AX55 Firmware version 3.0.0.4.386_52041

Version 3.0.0.4.386_52041

65.17 MB

2023/08/31

https://www.asus.com/networking-iot-servers/whole-home-mesh-wifi-system/all-series/rt-ax55/helpdesk_bios/?model2Name=RT-AX55

 

Reference:

https://www.bleepingcomputer.com/news/security/asus-routers-vulnerable-to-critical-remote-code-execution-flaws/?s=03 

https://www.hkepc.com/forum/viewthread.php?fid=12&tid=2598705&extra=&page=2

https://www.hkepc.com/forum/viewthread.php?fid=12&tid=2598169&page=1

https://rog-forum.asus.com/t5/gaming-network-products/rt-ax56u-high-cpu-and-high-ram-leading-to-stop-routing-after-a/td-p/930133/page/2

TWCERT/CC台灣電腦網路危機處理暨協調中心|企業資安通報協處|資安情資分享|漏洞通報|資安聯盟|資安電子報-ASUS RT-AX55、RT-AX56U_V2、RT-AC86U - Format String - 1

TWCERT/CC台灣電腦網路危機處理暨協調中心|企業資安通報協處|資安情資分享|漏洞通報|資安聯盟|資安電子報-ASUS RT-AX55、RT-AX56U_V2、RT-AC86U - Format String - 2

TWCERT/CC台灣電腦網路危機處理暨協調中心|企業資安通報協處|資安情資分享|漏洞通報|資安聯盟|資安電子報-ASUS RT-AX55、RT-AX56U_V2、RT-AC86U - Format String - 3

 

ASUS routers RT-AX55, AX56U_V2 and RT-AC86U vulnerable to critical remote code execution flaws (CVSS 9.8)