ASUS has issued a critical security warning about an authentication bypass vulnerability (CVE-2025-2492, CVSS 9.2) in their routers that have the AiCloud feature enabled. This flaw allows remote attackers to execute unauthorized functions without needing any login credentials by sending a specially crafted request. A wide range of ASUS router models are affected. Users are strongly advised to immediately update their router firmware to the latest version. For end-of-life products, ASUS recommends disabling AiCloud and internet access to various services.

‍