Asus releases security updates for its routers after major vulnerabilities surface – here’s how to stay safe
- Asus updates MyAsus app to fix two new security issues affecting PCs
- Company confirms past issues in routers and software are now fully resolved
- Users urged to update software, use strong passwords, and disable unused services
Asus has released new security patches for its MyAsus software, following fresh reports from security researchers highlighting flaws across multiple services.
The update applies to all compatible desktops, laptops, NUCs, and All-in-One PCs, addressing two vulnerabilities tracked as CVE-2025-4569 and CVE-2025-4570.
The new versions are 4.0.36.0 for x64 systems and 4.2.35.0 for Arm-based computers – and users can update through the MyAsus app or via the Microsoft Store.
Patch now
The CVE-2025-4569 flaw received a CVSS v4.0 score of 7.7, marking it as high severity. CVE-2025-4570 was rated at 6.9, a medium-level risk.
Both are resolved in the update. Asus also confirmed that is has addressed related issues in Armoury Crate, DriverHub, and specific router models, although details were limited. The company says all reported vulnerabilities have now been resolved.
This patch follows a string of vulnerability disclosures this year.
Back in April 2025, the company patched a critical vulnerability in routers using AiCloud, a service that lets users access and share files over the internet.
Sign up to the TechRadar Pro newsletter to get all the top news, opinion, features and guidance your business needs to succeed!
Tracked as CVE-2025-2492, it had a severity score of 9.2 and could allow remote attackers to execute functions without permission.
Asus urged users to disable AiCloud on unsupported models and update the firmware immediately.
Then in June 2025, Asus also patched CVE-2024-3080, a critical authentication bypass flaw affecting seven popular router models, including ZenWiFi XT8 and RT-AX88U.
That update also covered a buffer overflow issue and a system command execution bug, both tied to admin privileges.
In a related incident, a high-severity flaw tracked as CVE-2023-39780 was exploited by attackers to build a botnet using compromised routers.
That vulnerability allowed persistent access via non-volatile memory.
Asus responded by urging users to reset affected devices and use stronger credentials.
It’s important to keep your router secure – regardless of the make – by checking firmware regularly, updating software, and limiting remote access features whenever possible.
You might also like
Asus updates MyAsus app to fix two new security issues affecting PCs Company confirms past issues in routers and software are now fully resolved Users urged to update software, use strong passwords, and disable unused services Asus has released new security patches for its MyAsus software, following fresh reports from…
Recent Posts
- Birdfy’s solar-powered smart feeder is down to one of its best prices
- Are OLED TVs still worth the premium in 2026?
- The Clapper was a bad smart home gadget — and a viral sensation
- Which DJI camera should I buy? Here’s our essential guide to your options, including the results of our in-depth testing
- The future of physical games is not looking great
Archives
- July 2026
- June 2026
- May 2026
- April 2026
- March 2026
- February 2026
- January 2026
- December 2025
- November 2025
- October 2025
- September 2025
- August 2025
- July 2025
- June 2025
- May 2025
- April 2025
- March 2025
- February 2025
- January 2025
- December 2024
- November 2024
- October 2024
- September 2024
- August 2024
- July 2024
- June 2024
- May 2024
- April 2024
- March 2024
- February 2024
- January 2024
- December 2023
- November 2023
- October 2023
- September 2023
- August 2023
- July 2023