Path Traversal in Asus Router

CVE-2025-59372

A path traversal vulnerability has been identified in certain router models. A remote, authenticated attacker could exploit this vulnerability to write files outside the intended directory, potentially affecting device integrity. Refer to…

Vulnerability class: Path Traversal (Directory Traversal)

EPSS: 0.003 (48.8th percentile) — read the EPSS interpretation.

Affected products

Asus Router — versions 3.0.0.4_386, 3.0.0.4_388, 3.0.0.6_102

Weakness classification (CWE)

CWE-22 — Path Traversal

References

www.asus.com/security-advisory/ (vendor-advisory)