ASUS Confirms Critical Flaw in AiCloud-Enabled Routers

ASUS has revealed a critical security vulnerability affecting routers with AiCloud enabled, allowing remote attackers to execute unauthorized functions on vulnerable devices. The vulnerability, listed under the number CVE-2025-2492, has a CVSS score of 9.2 out of 10. ASUS describes this flaw as an improper authentication control vulnerability in certain series of ASUS router firmware. Users are advised to update their firmware to fix this vulnerability.