Vulnerability in Asus Router

CVE-2026-13385

An Improper Validation of Integrity Check Value and Improper Certificate Validation in certain ASUS router models allows a remote man-in-the-middle(MITM) user to make the router download and execute arbitrary command via a spoofed server. …

Vulnerability class: Improper Certificate Validation

Affected products

  • Asus Router — versions 3.0.0.4_386 series, 3.0.0.4_388 series, 3.0.0.6_102 series

Weakness classification (CWE)

References