Vulnerability in Asus Router

CVE-2025-59371

An authentication bypass vulnerability has been identified in the IFTTT integration feature. A remote, authenticated attacker could leverage this vulnerability to potentially gain unauthorized access to the device. This vulnerability does…

EPSS: 0.002 (45.1th percentile) — read the EPSS interpretation.

Affected products

Asus Router — versions 3.0.0.4_386, 3.0.0.4_388, 3.0.0.6_102

Weakness classification (CWE)

CWE-330 — Use of Insufficiently Random Values

References

www.asus.com/security-advisory/ (vendor-advisory)