华硕产品安全公告

我们一丝不苛地确保华硕产品安全无虞,以便保护重要客户的隐私。 我们致力于依据所有适用的法律规范,提升对安全性及个人信息的保护程度,也欢迎客户随时报告有关产品的安全性或隐私权问题。您提供给华硕的信息只会用来协助解决所报告的安全漏洞或问题,过程中可能会与您联络,索取更多相关信息。

如何向华硕报告安全漏洞或问题

欢迎客户随时报告有关安全性和隐私权的问题及疑虑,若要联络我们,请利用检举专用电子邮件地址 https://www.asus.com/securityadvisory/。为方便我们迅速处理您的疑虑,电子邮件中请附上下列信息。

  1. 您的全名及联络方式, 联络方式可为电子邮件地址、电话号码或任何其他您偏好的联络方式。若提供电话号码,请附上完整的国家代码、区域号码和分机号码(若有)。
  2. 针对要报告的问题提供完整、详实的信息。视情况而定,应包括下列信息:
    1. 有相关疑虑的华硕服务或系统名称。
    2. 受影响硬件产品的产品类型、产品名称和型号。
    3. 受影响华硕软件产品的名称、说明和版本编号。
    4. 针对问题或疑虑提供完整、详实的说明,并附上您认为相关的任何背景信息,以及有助于我们重现和/或解决问题的任何其他相关信息。

负责任的报告行为准则

华硕感谢客户及广大华硕社群的贡献,协助我们改善产品和服务的安全性。然而,调查或报告任何问题时,请您避免轻率行动,并将下列事项铭记在心:

  1. 未经授权,请勿尝试存取或修改任何华硕服务、系统、产品或软件。
  2. 请勿揭露、修改、销毁或误用任何您发现的资料。
  3. 报告问题时,与任一方交流的所有信息务必彻底保密。

接下来的流程?

等到解决报告的问题后,我们会向所有受影响的客户提供适当的解决方案。 我们会将这件事视为第一优先,并在时机成熟时,立即推出解决方案。

华硕也会建立最新软件更新的清单,并附上已修正问题的说明。虽然只要情况允许,我们都会尽量通知客户,但也建议客户定期浏览此页面,掌握第一手更新消息。

安全性更新

03/29/2021 ASUS ASMB8-iKVM 和 ASMB9-iKVM 服务器产品固件安全更新

漏洞:
CVE-2021-28175, CVE-2021-28176, CVE-2021-28177, CVE-2021-28178, CVE-2021-28179, CVE-2021-28180, CVE-2021-28181, CVE-2021-28182, CVE-2021-28183, CVE-2021-28184, CVE-2021-28185, CVE-2021-28186, CVE-2021-28187, CVE-2021-28188, CVE-2021-28189, CVE-2021-28203, CVE-2021-28204CVE-2021-28205, CVE-2021-28190, CVE-2021-28191, CVE-2021-28192, CVE-2021-28193, CVE-2021-28194, CVE-2021-28195, CVE-2021-28196, CVE-2021-28197, CVE-2021-28198, CVE-2021-28199, CVE-2021-28200, CVE-2021-28201, CVE-2021-28202, CVE-2021-28206, CVE-2021-28207, CVE-2021-28208, CVE-2021-28209


ASUS has released a firmware update for the ASUS ASMB8-iKVM and ASMB9-iKVM server-management modules. This update includes important security updates, and ASUS strongly recommends that users of ASMB8-iKVM and ASMB9-iKVM upgrade the BMC firmware to the latest version.


To check the installed version of ASMB8-iKVM and ASMB9-iKVM and to download the latest version, please visit the relevant ASUS support website. A full list of download links is provided in the below table.

Model Firmware Version ASUS Support Site Path

ASMB8

Z10PA-U8

1.16.1

https://dlcdnets.asus.com/pub/ASUS/server/accessory/ASMB8/ASMB8_FW1161_Z10PA-U8.zip

ASMB8

RS700-E8-RS4 V2

1.16.1

https://dlcdnets.asus.com/pub/ASUS/server/accessory/ASMB8/ASMB8_FW1161_RS700-E8-RS4_V2.zip

ASMB8

RS700-E8-RS8 V2

1.16.1

https://dlcdnets.asus.com/pub/ASUS/server/accessory/ASMB8/ASMB8_FW1161_RS700-E8-RS8_V2.zip

ASMB8

RS720-E8-RS12-X

1.16.1

https://dlcdnets.asus.com/pub/ASUS/server/accessory/ASMB8/ASMB8_FW1161_RS720-E8-RS12-X.zip

ASMB8

Z10PR-D16

1.16.1

https://dlcdnets.asus.com/pub/ASUS/server/accessory/ASMB8/ASMB8_FW1161_Z10PR-D16.zip

ASMB8

RS500-E8-PS4 V2

1.16.1

https://dlcdnets.asus.com/pub/ASUS/server/accessory/ASMB8/ASMB8_FW1161_RS500-E8-PS4_V2.zip

ASMB8

RS500-E8-RS4 V2

1.16.1

https://dlcdnets.asus.com/pub/ASUS/server/accessory/ASMB8/ASMB8_FW1161_RS500-E8-RS4_V2.zip

ASMB8

RS500-E8-RS8 V2

1.16.1

https://dlcdnets.asus.com/pub/ASUS/server/RS500-E8-RS8-V2/Firmware/ASMB8_FW1161_RS500-E8-RS8_V2.zip

ASMB8

RS520-E8-RS12-E V2

1.16.1

https://dlcdnets.asus.com/pub/ASUS/server/accessory/ASMB8/ASMB8_FW1161_RS520-E8-RS12-E_V2.zip

ASMB8

RS520-E8-RS8 V2

1.16.1

https://dlcdnets.asus.com/pub/ASUS/server/accessory/ASMB8/ASMB8_FW1161_RS520-E8-RS8_V2.zip

ASMB8

RS500-E8-RS4

1.16.1

https://dlcdnets.asus.com/pub/ASUS/server/accessory/ASMB8/ASMB8_FW1161_RS500-E8.zip

ASMB8

RS540-E8-RS36-ECP

1.16.1

https://dlcdnets.asus.com/pub/ASUS/server/accessory/ASMB8/ASMB8_FW1161_RS540-E8-RS36-ECP.zip

ASMB8

X99-WS/IPMT

1.16.1

https://dlcdnets.asus.com/pub/ASUS/server/accessory/ASMB8/ASMB8_FW1161_X99-WS_IPMI.zip

ASMB8

Z10PE-D16

1.16.1

https://dlcdnets.asus.com/pub/ASUS/server/accessory/ASMB8/ASMB8_FW1161_Z10PE-D16.zip

ASMB8

Z10PC-D810G-2S

1.16.1

https://dlcdnets.asus.com/pub/ASUS/server/accessory/ASMB8/ASMB8_FW1161_Z10PC-D8_10G-2S.zip

ASMB8

Z10PH-D16

1.16.1

https://dlcdnets.asus.com/pub/ASUS/mb/Socket2011-R3/Z10PH-D16/Firmware/ASMB8_FW1161_Z10PH-D16.zip

ASMB8

RS720Q-E8-RS12

1.16.1

https://dlcdnets.asus.com/pub/ASUS/server/accessory/ASMB8/ASMB8_FW1161_RS720Q-E8.zip

ASMB8

Z10PA-D8

1.16.1

https://dlcdnets.asus.com/pub/ASUS/server/accessory/ASMB8/ASMB8_FW1161_Z10PA-D8.zip

ASMB8

TS500-E8-PS4 V2

1.16.1

https://dlcdnets.asus.com/pub/ASUS/server/accessory/ASMB8/ASMB8_FW1161_TS500-E8-PS4_V2.zip

ASMB8

RS720-E8-RS24-ECP

1.16.1

https://dlcdnets.asus.com/pub/ASUS/server/accessory/ASMB8/ASMB8_FW1161_RS720-E8-RS24-ECP.zip

ASMB8

Z10PA-U8

1.16.1

https://dlcdnets.asus.com/pub/ASUS/server/accessory/ASMB8/ASMB8_FW1161_Z10PA-U8.zip

ASMB8

RS700-E8-RS4 V2

1.16.1

https://dlcdnets.asus.com/pub/ASUS/server/accessory/ASMB8/ASMB8_FW1161_RS700-E8-RS4_V2.zip

ASMB8

RS700-E8-RS8 V2

1.16.1

https://dlcdnets.asus.com/pub/ASUS/server/accessory/ASMB8/ASMB8_FW1161_RS700-E8-RS8_V2.zip

ASMB8

RS720-E8-RS12-X

1.16.1

https://dlcdnets.asus.com/pub/ASUS/server/accessory/ASMB8/ASMB8_FW1161_RS720-E8-RS12-X.zip

ASMB8

Z10PR-D16

1.16.1

https://dlcdnets.asus.com/pub/ASUS/server/accessory/ASMB8/ASMB8_FW1161_Z10PR-D16.zip

ASMB8

RS500-E8-PS4 V2

1.16.1

https://dlcdnets.asus.com/pub/ASUS/server/accessory/ASMB8/ASMB8_FW1161_RS500-E8-PS4_V2.zip

ASMB8

RS500-E8-RS4 V2

1.16.1

https://dlcdnets.asus.com/pub/ASUS/server/accessory/ASMB8/ASMB8_FW1161_RS500-E8-RS4_V2.zip

ASMB8

RS500-E8-RS8 V2

1.16.1

https://dlcdnets.asus.com/pub/ASUS/server/RS500-E8-RS8-V2/Firmware/ASMB8_FW1161_RS500-E8-RS8_V2.zip

ASMB8

RS520-E8-RS12-E V2

1.16.1

https://dlcdnets.asus.com/pub/ASUS/server/accessory/ASMB8/ASMB8_FW1161_RS520-E8-RS12-E_V2.zip

ASMB8

RS520-E8-RS8 V2

1.16.1

https://dlcdnets.asus.com/pub/ASUS/server/accessory/ASMB8/ASMB8_FW1161_RS520-E8-RS8_V2.zip

ASMB8

RS500-E8-RS4

1.16.1

https://dlcdnets.asus.com/pub/ASUS/server/accessory/ASMB8/ASMB8_FW1161_RS500-E8.zip

ASMB8

RS540-E8-RS36-ECP

1.16.1

https://dlcdnets.asus.com/pub/ASUS/server/accessory/ASMB8/ASMB8_FW1161_RS540-E8-RS36-ECP.zip

ASMB8

X99-WS/IPMT

1.16.1

https://dlcdnets.asus.com/pub/ASUS/server/accessory/ASMB8/ASMB8_FW1161_X99-WS_IPMI.zip

ASMB8

Z10PE-D16

1.16.1

https://dlcdnets.asus.com/pub/ASUS/server/accessory/ASMB8/ASMB8_FW1161_Z10PE-D16.zip

ASMB8

Z10PC-D810G-2S

1.16.1

https://dlcdnets.asus.com/pub/ASUS/server/accessory/ASMB8/ASMB8_FW1161_Z10PC-D8_10G-2S.zip

ASMB8

Z10PH-D16

1.16.1

https://dlcdnets.asus.com/pub/ASUS/mb/Socket2011-R3/Z10PH-D16/Firmware/ASMB8_FW1161_Z10PH-D16.zip

ASMB8

RS720Q-E8-RS12

1.16.1

https://dlcdnets.asus.com/pub/ASUS/server/accessory/ASMB8/ASMB8_FW1161_RS720Q-E8.zip

ASMB8

Z10PA-D8

1.16.1

https://dlcdnets.asus.com/pub/ASUS/server/accessory/ASMB8/ASMB8_FW1161_Z10PA-D8.zip

ASMB8

TS500-E8-PS4 V2

1.16.1

https://dlcdnets.asus.com/pub/ASUS/server/accessory/ASMB8/ASMB8_FW1161_TS500-E8-PS4_V2.zip

ASMB8

RS720-E8-RS24-ECP

1.16.1

https://dlcdnets.asus.com/pub/ASUS/server/accessory/ASMB8/ASMB8_FW1161_RS720-E8-RS24-ECP.zip

Model Firmware Version ASUS Support Site Path

ASMB9

RS300-E10-PS4

1.15.3

https://dlcdnets.asus.com/pub/ASUS/server/RS300-E10-PS4/FW/ASMB9_FW1153_RS300-E10-PS4.zip

ASMB9

RS300-E10-RS4

1.15.3

https://dlcdnets.asus.com/pub/ASUS/server/RS300-E10-RS4/FW/ASMB9_FW1153_RS300-E10-RS4.zip

ASMB9

RS720-E9-RS8

2.2.1

https://dlcdnets.asus.com/pub/ASUS/server/RS720-E9-RS8/FW/ASMB9_FW221_RS720-E9-RS8.zip

ASMB9

RS720-E9-RS12-E

2.2.1

https://dlcdnets.asus.com/pub/ASUS/server/RS720-E9-RS12-E/BIOS_FW/ASMB9_FW221_RS720-E9-RS12-E.zip

ASMB9

RS720-E9-RS24-E

2.2.1

https://dlcdnets.asus.com/pub/ASUS/server/RS720-E9-RS24-E/RS720-E9-RS24-E_Upgrade_BMC_Firmware_to_2.2.1.zip

ASMB9

RS720-E9-RS8-G

1.15.4

https://dlcdnets.asus.com/pub/ASUS/server/RS720-E9-RS8-G/ASMB9_FW1154_RS720-E9-RS8-G.zip

ASMB9

RS720-E9-RS24-U

1.15.5

https://dlcdnets.asus.com/pub/ASUS/server/RS720-E9-RS24-U/FW/ASMB9_FW1155_RS720-E9-RS24-U.zip.zip

ASMB9

RS700-E9-RS12

2.2.4

https://dlcdnets.asus.com/pub/ASUS/server/RS700-E9-RS12/FW/RS700-E9-RS12_Upgrade_BMC_Firmware_to_2.2.4.zip

ASMB9

RS700-E9-RS4

2.2.4

https://dlcdnets.asus.com/pub/ASUS/server/RS700-E9-RS4/FW/RS700-E9-RS4_Upgrade_BMC_Firmware_to_2.2.4.zip

ASMB9

ESC4000 G4

1.15.7

https://dlcdnets.asus.com/pub/ASUS/server/ESC4000_G4/Driver/ASMB9_FW1157_ESC4000_G4.zip

ASMB9

ESC4000 G4S

1.15.7

https://dlcdnets.asus.com/pub/ASUS/server/ESC4000_G4S/FW/ASMB9_FW1157_ESC4000_G4S.zip

ASMB9

ESC4000 G4X

1.15.7

https://dlcdnets.asus.com/pub/ASUS/server/ESC4000_G4X/FW/ASMB9_FW1157_ESC4000_G4X.zip

ASMB9

RS500-E9-PS4

1.15.5

https://dlcdnets.asus.com/pub/ASUS/server/RS500-E9-PS4/FW/ASMB9_FW1155_RS500-E9-PS4.zip

ASMB9

RS500-E9-RS4

1.15.5

https://dlcdnets.asus.com/pub/ASUS/server/RS500-E9-RS4/FW/ASMB9_FW1155_RS500-E9-RS4.zip

ASMB9

RS500-E9-RS4-U

1.15.5

https://dlcdnets.asus.com/pub/ASUS/server/RS500-E9-RS4-U/BIOS&FW/ASMB9_FW1155_RS500-E9-RS4-U.zip

ASMB9

RS520-E9-RS8

1.15.4

https://dlcdnets.asus.com/pub/ASUS/server/RS520-E9-RS8/fw/ASMB9_FW1154_RS520-E9-RS8.zip

ASMB9

RS520-E9-RS12-E

1.15.4

https://dlcdnets.asus.com/pub/ASUS/server/RS520-E9-RS12-E/fw/ASMB9_FW1154_RS520-E9-RS12-E.zip

ASMB9

RS540-E9-RS36-E

1.15.2

https://dlcdnets.asus.com/pub/ASUS/server/accessory/ASMB9/ASMB9_FW1152_RS540-E9-RS36-E.zip

ASMB9

E900 G4

1.15.2

https://dlcdnets.asus.com/pub/ASUS/server/E900_G4/ASMB9_FW1152_E900-G4.zip

ASMB9

TS700-E9-RS8

1.15.2

https://dlcdnets.asus.com/pub/ASUS/server/TS700-E9/RS8/FW/ASMB9_FW1152_TS700-E9-RS8.zip

ASMB9

KRPA-U16

2.2.5

https://dlcdnets.asus.com/pub/ASUS/mb/SocketSP3(4094)/KRPA-U16/BIOS&FW/KRPA-U16_Upgrade_BMC_Firmware_to_2.2.5.zip

ASMB9

RS500A-E10-PS4

2.2.5

https://dlcdnets.asus.com/pub/ASUS/server/RS500A-10/BIOS&FW/RS500A-E10-PS4_Upgrade_BMC_Firmware_to_2.2.5.zip

ASMB9

RS500A-E10-RS4

2.2.5

https://dlcdnets.asus.com/pub/ASUS/server/RS500A-10/BIOS&FW/RS500A-E10-RS4_Upgrade_BMC_Firmware_to_2.2.5.zip

ASMB9

RS500A-E10-RS12U

2.2.5

https://dlcdnets.asus.com/pub/ASUS/server/RS500A-10/BIOS&FW/RS500A-E10-RS12-U_Upgrade_BMC_Firmware_to_2.2.5.zip

ASMB9

RS700A-E9-RS4V2

2.2.1

https://dlcdnets.asus.com/pub/ASUS/server/RS700A-E9V2/FW/RS700A-E9-RS4V2_Upgrade_BMC_Firmware_to_2.2.1.zip

ASMB9

RS700A-E9-RS12V2

2.2.1

https://dlcdnets.asus.com/pub/ASUS/server/RS700A-E9V2/FW/RS700A-E9-RS12V2_Upgrade_BMC_Firmware_to_2.2.1.zip

ASMB9

RS720A-E9-RS12V2

2.2.1

https://dlcdnets.asus.com/pub/ASUS/server/RS720A-E9V2/FW/RS720A-E9-RS12V2_Upgrade_BMC_Firmware_to_2.2.1.zip

ASMB9

RS720A-E9-RS24V2

2.2.1

https://dlcdnets.asus.com/pub/ASUS/server/RS720A-E9V2/FW/RS720A-E9-RS24V2_Upgrade_BMC_Firmware_to_2.2.1.zip

ASMB9

RS720Q-E9-RS8

1.15.1

https://dlcdnets.asus.com/pub/ASUS/server/RS720Q-E9-RS8/FW/ASMB9_FW1151_RS720Q-E9-RS8.zip

ASMB9

RS720Q-E9-RS24-S

1.15.1

https://dlcdnets.asus.com/pub/ASUS/server/RS720Q-E9-RS24-S/BIOS&FW/ASMB9_FW1151_RS720Q-E9-RS24-S.zip

ASMB9

WS C422 PRO/SE

1.14.2

https://dlcdnets.asus.com/pub/ASUS/mb/Socket2066/WS_C422_PRO_SE/ASMB9_FW1142_WS_C422_PRO_SE.zip

ASMB9

WS X299 PRO/SE

1.14.2

https://dlcdnets.asus.com/pub/ASUS/mb/Socket2066/WS_X299_PRO_SE/FW/ASMB9_FW1142_WS_X299_PRO_SE.zip

ASMB9

E700 G4(ESC700 G4, WS880T)

1.14.2

https://dlcdnets.asus.com/pub/ASUS/server/ESC700_G4_E700_G4/FW/ASMB9_FW1142_ESC700_G4.zip

ASMB9

ESC8000 G4/10G

1.15.5

https://dlcdnets.asus.com/pub/ASUS/server/ESC8000_G4-10G/ASMB9_FW1155_ESC8000_G4_10G.zip

ASMB9

ESC8000 G4

2.2.1

https://dlcdnets.asus.com/pub/ASUS/server/ESC8000_G4/BIOS&FW/ASMB9_FW221_ESC8000_G4_Series_2.2.1.zip

ASMB9

KNPA-U16

1.14.5

https://dlcdnets.asus.com/pub/ASUS/mb/SocketSP3(4094)/KNPA-U16/FW/ASMB9_FW1145_KNPA-U16.zip

ASMB9

RS500A-E9-RS4

1.14.5

https://dlcdnets.asus.com/pub/ASUS/server/RS500A-E9/RS4/FW/ASMB9_FW1145_RS500A-E9-RS4.zip

ASMB9

RS500A-E9-PS4

1.14.5

https://dlcdnets.asus.com/pub/ASUS/server/RS500A-E9/PS4/FW/ASMB9_FW1145_RS500A-E9-PS4.zip

ASMB9

RS500A-E9-RS4-U

1.14.5

https://dlcdnets.asus.com/pub/ASUS/server/RS500A-E9/RS4-U/ASMB9_FW1145_RS500A-E9-RS4-U.zip

ASMB9

PRO WS C621-64L SAGE/10G

1.15.2

https://dlcdnets.asus.com/pub/ASUS/mb/Socket3647/Pro_WS_C621-64L_SAGE_10G/FW/ASMB9_FW1152_PRO_WS_C621_64L_SAGE_10G.zip

ASMB9

PRO E800 G4

1.15.2

https://dlcdnets.asus.com/pub/ASUS/server/Pro_E800_G4/FIRMWARE/ASMB9_FW1152_Pro_E800_G4.zip

ASMB9

Z11PA-U12

1.15.2

https://dlcdnets.asus.com/pub/ASUS/mb/Socket3647/Z11PA-U12/fw/ASMB9_FW1152_Z11PA-U12.zip

ASMB9

ESC4000 DHD G4

1.15.2

https://dlcdnets.asus.com/pub/ASUS/server/ESC4000_DHD_G4/FIRMWARE/ASMB9_FW1152_ESC4000_DHD_G4.zip

ASMB9

TS300-E10-PS4

1.15.3

https://dlcdnets.asus.com/pub/ASUS/server/TS300-E10/PS4/FW/ASMB9_FW1153_TS300-E10-PS4.zip

ASMB9

RS100-E10-PI2

1.15.3

https://dlcdnets.asus.com/pub/ASUS/server/RS100-E10-PI2/FW/ASMB9_FW1153_RS100-E10-PI2.zip

03/24/2021 ASUS SMM 权限安全更新(CVE-2021-26943) 适用于 ASUS SKL 笔记本电脑

漏洞: CVE-2021-26943


ASUS has released a new BIOS version 304 for ASUS ZenBook Flip UX360CA that includes important security updates. This latest BIOS update contains fixes for the CVE-2021-26943 vulnerability.


ASUS recommends that all users with the ZenBook Flip UX360CA laptop, running ASUS BIOS version 303 or any prior versions, should update to the latest version 304. To check the installed BIOS version and to download the latest version, visit https://www.asus.com/support/FAQ/1045541/

03/09/2021 安全公告适用于 DNSpooq

安全公告适用于 DNSpooq

 

CVE: CVE-2020-25681, CVE-2020-25782, CVE-2020-25683, CVE-2020-25684, CVE-2020-25685, CVE-2020-25686, CVE-2020-25687

 

Severity: Medium

 

Abstract

This quick-patch beta firmware was released on February 2, 2021. The first model-specific regular firmware update has just been released, and other models are scheduled to follow in the near future. The beta firmware requires users to perform a manual update.

 

Products from over 40 companies, including ASUS routers, are affected by DNSpooq.

There are two sets of vulnerabilities.

  • Buffer-overflow vulnerabilities: CVE-2020-25681, CVE-2020-25682, CVE-2020-25683, CVE-2020-25687
  • DNS cache-poisoning vulnerabilities: CVE-2020-25684, CVE-2020-25685, CVE-2020-25686

 

No ASUS routers are affected by CVE-2020-25681, CVE-2020-25682, CVE-2020-25683, CVE-2020-25687, because these vulnerabilities only affect DNSSEC.

ASUS routers are only affected by DNS cache-poisoning vulnerabilities, with medium severity. All these vulnerabilities can be fixed by updating to the new firmware.
DNS cache poisoning can potentially allow a remote-code execution that would impact the security of many brands of home router and other networking equipment.

 

 

受影响的型号

Model name Firmware download path
GT-AX11000 https://rog.asus.com/networking/rog-rapture-gt-ax11000-model/helpdesk_bios
GT-AC5300 https://www.asus.com.cn/Networking/ROG-Rapture-GT-AC5300/HelpDesk_BIOS/
GT-AC2900 https://rog.asus.com/networking/rog-rapture-gt-ac2900-model/helpdesk_bios
TUF-AX3000 https://www.asus.com/my/Networking-IoT-Servers/WiFi-6/All-series/TUF-Gaming-AX3000/HelpDesk_BIOS/
RT-AX92U https://www.asus.com/Networking-IoT-Servers/WiFi-6/All-series/RT-AX92U/HelpDesk_BIOS/
RT-AX88U https://www.asus.com/Networking-IoT-Servers/WiFi-6/All-series/RT-AX88U/HelpDesk_BIOS/
RT-AX86U https://www.asus.com/Networking-IoT-Servers/WiFi-6/All-series/RT-AX86U/HelpDesk_BIOS/
RT-AX82U https://www.asus.com/Networking-IoT-Servers/WiFi-6/All-series/RT-AX82U/HelpDesk_BIOS/
RT-AX68U https://www.asus.com/Networking-IoT-Servers/WiFi-6/All-series/RT-AX68U/HelpDesk_BIOS/
RT-AX58U https://www.asus.com/Networking-IoT-Servers/WiFi-6/All-series/RT-AX58U/HelpDesk_BIOS/
RT-AX56U https://www.asus.com/Networking-IoT-Servers/WiFi-6/All-series/RT-AX56U/HelpDesk_BIOS/
RT-AX55 https://www.asus.com/Networking-IoT-Servers/WiFi-6/All-series/RT-AX55/HelpDesk_BIOS/
RT-AC5300 https://www.asus.com/supportonly/RT-AC5300/HelpDesk_download/
RT-AC88U https://www.asus.com/supportonly/RT-AC88U/HelpDesk_download/
RT-AC3100 https://www.asus.com/supportonly/RT-AC3100/HelpDesk_download/
RT-AC86U https://www.asus.com/supportonly/RT-AC86U/HelpDesk_download/
RT-AC2900 https://www.asus.com/supportonly/RT-AC2900/HelpDesk_download/
RT-AC1750_B1 https://www.asus.com/supportonly/RT-AC1750_B1/HelpDesk_download/
RT-AC1900 https://www.asus.com/supportonly/RT-AC1900/HelpDesk_download/
RT-AC1900P https://www.asus.com/supportonly/RT-AC1900P/HelpDesk_download/
RT-AC1900U https://www.asus.com/supportonly/RT-AC1900U/HelpDesk_download/
RT-AC66U B1 https://www.asus.com/Networking-IoT-Servers/WiFi-Routers/ASUS-WiFi-Routers/RT-AC66U-B1/HelpDesk_Download/
RT-AC68P https://www.asus.com/supportonly/RT-AC68P/HelpDesk_download/
RT-AC68R https://www.asus.com/supportonly/RT-AC68R/HelpDesk_download/
RT-AC68RF https://www.asus.com/supportonly/RT-AC68RF/HelpDesk_download/
RT-AC68RW https://www.asus.com/supportonly/RT-AC68RW/HelpDesk_download/
RT-AC68U https://www.asus.com/supportonly/RT-AC68U/HelpDesk_download/
RT-AC58U https://www.asus.com/supportonly/RT-AC58U/HelpDesk_download/
RT-AC85U https://www.asus.com/supportonly/RT-AC85U/HelpDesk_download/
RT-AC65U https://www.asus.com/supportonly/RT-AC65U/HelpDesk_download/
RT-AC68U_WHITE https://www.asus.com/supportonly/RT-AC68W/HelpDesk_download/
RT-AC68W https://www.asus.com/supportonly/RT-AC68W/HelpDesk_download/
ZenWiFi AX https://www.asus.com/supportonly/ASUS%20ZenWiFi%20AX%20(XT8)/HelpDesk_download/
ZenWiFi AC https://www.asus.com/supportonly/ASUS%20ZenWiFi%20AC%20(CT8)/HelpDesk_download/
ZenWiFi AC Mini https://www.asus.com/supportonly/ZenWiFi%20AC%20Mini%20(CD6)/HelpDesk_download/
ZenWiFi Mini AX https://www.asus.com/supportonly/ZenWiFi%20Mini%20AX%20XD4/HelpDesk_download/
BlueCave https://www.asus.com/Networking-IoT-Servers/Whole-Home-Mesh-WiFi-System/AiMesh-WiFi-Routers-and-Systems/Blue-Cave/HelpDesk_Download/
Lyra https://www.asus.com/supportonly/Lyra/HelpDesk_download/
Lyra mini https://www.asus.com/supportonly/Lyra%20Mini/HelpDesk_download/
Lyra trio https://www.asus.com/supportonly/Lyra%20Trio/HelpDesk_download/

https://www.asus.com/support/FAQ/1008000

https://www.asus.com/support/FAQ/1039292

07/10/2020 ASUS ScreenPad 2 升级工具安全更新 (CVE-2020-15009) 适用于笔记本电脑搭载 ScreenPad 1.0 (UX450FDX, UX550GDX and UX550GEX)

漏洞: CVE-2020-15009

AsusScreenXpertServicec.exe and ScreenXpertUpgradeServiceManager.exe in ScreenPad2_Upgrade_Tool.msi V1.0.3 for ASUS PCs with ScreenPad 1.0 (UX450FDX, UX550GDX and UX550GEX) could lead to unsigned code execution with no additional restrictions when a user puts an application at a particular path with a particular file name.

ASUS has released a new version (1.0.4) of the ScreenPad2 Upgrade Tool that includes important security updates. ASUS recommends that users with ASUS PCs with ScreenPad 1.0 (UX450FDX, UX550GDX and UX550GEX) running the ScreenPad2 Upgrade Tool version 1.0.3 or earlier update to the latest version.

To check the installed version of the ScreenPad 2 Upgrade Tool and to download the latest version, visit https://www.asus.com/support/FAQ/1043674

ASUS would like to thank Michael van Griensven for assistance with this security update.

04/14/2020 华硕更新关于已知 Intel CPU 安全漏洞的修复

ASUS is aware of recent security research disclosing potential security vulnerabilities in Intel® CSME, Intel® SPS, Intel® TXE, Intel® AMT, Intel® PTT and/or Intel® DAL chipsets. These vulnerabilities may result in:

  • Improper privilege changes;
  • Denial of service;
  • Disclosure of information.

ASUS is working closely with platform owners to provide firmware and software updates for all affected devices, to mitigate potential risks associated with the vulnerabilities that have been identified.

 

Symptom 描述与华硕解决方案
请查阅附件
Intel-CSME-security-Symptom-Description-and-Solution.pdf

重要提示: ASUS BIOS Update FAQ

 

PLEASE FREQUENTLY CHECK FOR INFORMATION ABOUT THE LATEST UPDATES AND ADVISORIES FROM ASUS REGARDING YOUR EQUIPMENT AND SOFTWARE. THE INFORMATION PROVIDED IN THIS ADVISORY IS PROVIDED ON AN “AS IS” BASIS WITHOUT ANY WARRANTY OR GUARANTEE OF ANY KIND. ASUS RESERVES THE RIGHT TO CHANGE OR UPDATE THIS ADVISORY AT ANY TIME WITHOUT NOTICE.

04/09/2020 华硕设备激活安全更新(CVE-2020-10649)适用于华硕笔记本电脑

漏洞: CVE-2020-10649

ASUS has released a new version (1.0.7.0) of ASUS Device Activation for Win 10 notebook PCs that includes important security updates. This latest application update contains fixes for the CVE-2020-10649 vulnerability.

ASUS recommends that users with Win 10 notebook PCs running ASUS Device Activation version 1.0.6.0 and all prior versions to update to the latest version. To check the installed version of ASUS Device Activation and to download the latest version, visit https://www.asus.com/support/FAQ/1042640 .

ASUS would like to thank Anas Khan for the assistance with this security update.

03/18/2020 安全公告适用于 CVE-2019-15126 (Kr00k)

A new firmware update is now available for selected ASUS routers. This latest firmware update contains fixes for the CVE-2019-15126 (Kr00k) vulnerability, which allows unauthorized decryption of some WPA2-encrypted traffic in devices using some Broadcom and Cypress WiFi chips. This includes some ASUS routers.

We strongly encourage you to periodically audit both your networking equipment and your network security procedures.

We strongly recommend that you update your router to the latest firmware as soon as the new firmware is released. You will find the latest firmware available for download from the ASUS support page https://www.asus.com/support/, or on each model’s official product page. You will find links to the new firmware for selected ASUS routers at the end of this notice. Please note that updated firmware for some models is still undergoing testing, and will be made available as soon as possible.

If you have already installed the latest firmware version, please disregard this notice.

Should you have any questions or concerns, please contact ASUS via our Security Advisory reporting system: https://www.asus.com/securityadvisory/

For further help with router setup and an introduction to network security, please visit

https://www.asus.com/support/FAQ/1008000

https://www.asus.com/support/FAQ/1039292

Model name Support site path Firmware version Ready time
GT-AC5300 https://www.asus.com/us/Networking/ROG-Rapture-GT-AC5300/HelpDesk_BIOS/ 384_81686 Now
RT-AC5300 https://www.asus.com/us/Networking/RT-AC5300/HelpDesk_BIOS/ 384_81624 3/19
RT-AC86U https://www.asus.com/us/Networking/RT-AC86U/HelpDesk_BIOS/ 384_81352 Now
RT-AC2900 https://www.asus.com.cn/Networking/RT-AC2900/HelpDesk_BIOS/ 384_81352 Now
RT-AC3200 https://www.asus.com.cn/Networking/RTAC3200/HelpDesk_BIOS/ 382_51940 3/17
RT-AC1750_B1 https://www.asus.com/supportonly/RT-AC1750_B1/HelpDesk_BIOS/ 385_20253 Now
RT-AC1900 https://www.asus.com.cn/Networking/RT-AC1900/HelpDesk_BIOS/ 385_20253 Now
RT-AC1900P https://www.asus.com.cn/Networking/RT-AC1900P/HelpDesk_BIOS/ 385_20253 Now
RT-AC1900U https://www.asus.com.cn/Networking/RT-AC1900U/HelpDesk_BIOS/ 385_20253 Now
RT-AC66U B1 https://www.asus.com.cn/Networking/RT-AC66U-B1/HelpDesk_BIOS/ 385_20253 Now
RT-AC68P https://www.asus.com.cn/Networking/RTAC68P/HelpDesk_BIOS/ 385_20253 Now
RT-AC68R https://www.asus.com/supportonly/RT-AC68R/HelpDesk_BIOS/ 385_20253 Now
RT-AC68RF https://www.asus.com/supportonly/RT-AC68R/HelpDesk_BIOS/ 385_20253 Now
RT-AC68RW https://www.asus.com/supportonly/RT-AC68R/HelpDesk_BIOS/ 385_20253 Now
RT-AC68U https://www.asus.com.cn/Networking/RTAC68U/HelpDesk_BIOS/ 385_20253 Now
RT-AC68U_WHITE https://www.asus.com/us/Networking/RTAC68W/HelpDesk_BIOS/ 385_20253 Now
RT-AC68W https://www.asus.com/us/Networking/RTAC68W/HelpDesk_BIOS/ 385_20253 Now
ZenWiFi XT8 https://www.asus.com.cn/Networking/ZenWiFi-AX-XT8/HelpDesk_BIOS/ 386_25217 Now
RT-AX88U https://www.asus.com.cn/Networking/RT-AX88U/HelpDesk_BIOS/ 3.0.0.4.384.7997 Now
RT-AX92U https://www.asus.com.cn/Networking/RT-AX92U/HelpDesk_BIOS/ 3.0.0.4.384.8681 Now
GT-AX11000 https://www.asus.com/us/Networking/ROG-Rapture-GT-AX11000/HelpDesk_BIOS/ 3.0.0.4.384.7997 Now
RT-AX58U https://www.asus.com.cn/Networking/RT-AX58U/HelpDesk_BIOS/ 3.0.0.4.384.8563 Now
RT-AC88U https://www.asus.com/us/Networking/RT-AC88U/HelpDesk_BIOS/ 3.0.0.4.384.81790 Now
RT-AC3100 https://www.asus.com.cn/Networking/RT-AC3100/HelpDesk_BIOS/ 3.0.0.4.385.20457 Now
RT-AC1200G https://www.asus.com.cn/Networking/RT-AC1200G/HelpDesk_BIOS/ 3.0.0.4.382.51612 Now
RT-AC1200G https://www.asus.com.cn/Networking/RT-AC1200G-plus/HelpDesk_BIOS/ 3.0.0.4.382.51612 Now
RT-N12 D1 https://www.asus.com.cn/Networking/RTN12_D1/HelpDesk_BIOS/ 3.0.0.4.380.8292 Now


03/09/2020 安全提示适用于 CVE-2018-18287

Since 2018, ASUS has offered a firmware patch for affected routers to address the CVE-2018-18287 vulnerability, among other important security updates. All later firmware is unaffected.

ASUS recommends all users to always update their routers with the latest firmware. If a router’s firmware is not updated then ASUS strongly recommends to disable remote access from WAN or AiCloud, as well as resetting the router to its default settings. These steps will maximize security.

Users who have already installed the latest firmware version may disregard this notice.

For any questions or concerns, please contact ASUS via our Security Advisory reporting system: https://www.asus.com/securityadvisory/

For further help with router setup and an introduction to network security, please visit:
https://www.asus.com/support/FAQ/1008000
https://www.asus.com/support/FAQ/1039292

Model name Support site path Firmware version Ready time
RT-AC58U https://www.asus.com.cn/Networking/RT-AC58U/HelpDesk_Download/ 382_51939 now
RT-ACRH13 https://www.asus.com/us/Networking/RT-ACRH13/HelpDesk_Download/ 382_51939 now
RT-AC1750_B1 https://www.asus.com/supportonly/RT-AC1750_B1/HelpDesk_BIOS/ 385_20252 now
RT-AC1900 https://www.asus.com.cn/Networking/RT-AC1900/HelpDesk_BIOS/ 385_20252 now
RT-AC1900P https://www.asus.com.cn/Networking/RT-AC1900P/HelpDesk_BIOS/ 385_20252 now
RT-AC1900U https://www.asus.com.cn/Networking/RT-AC1900U/HelpDesk_BIOS/ 385_20252 now
RT-AC3200 https://www.asus.com.cn/Networking/RTAC3200/HelpDesk_BIOS/ 382_51939 now
RT-AC51U https://www.asus.com.cn/Networking/RTAC51U/HelpDesk_BIOS/ 380_8497 now
RT-AC51U+ https://www.asus.com.cn/Networking/RT-AC51U-plus/HelpDesk_BIOS/ 380_10875 now
RT-AC52U B1 https://www.asus.com.cn/Networking/RT-AC52U-B1/HelpDesk_Download/ 380_10875 now
RT-AC66U https://www.asus.com.cn/Networking/RTAC66U/HelpDesk_BIOS/ 382_51641 now
RT-AC66U B1 https://www.asus.com.cn/Networking/RT-AC66U-B1/HelpDesk_BIOS/ 385_20252 now
RT-AC66U_WHITE https://www.asus.com.cn/Networking/RTAC66U/HelpDesk_BIOS/ 382_51641 now
RT-AC68P https://www.asus.com.cn/Networking/RTAC68P/HelpDesk_BIOS/ 385_20252 now
RT-AC68R https://www.asus.com/supportonly/RT-AC68R/HelpDesk_BIOS/ 385_20252 now
RT-AC68RF https://www.asus.com/supportonly/RT-AC68R/HelpDesk_BIOS/ 385_20252 now
RT-AC58U https://www.asus.com.cn/Networking/RT-AC58U/HelpDesk_Download/ 382_51939 now
RT-ACRH13 https://www.asus.com/us/Networking/RT-ACRH13/HelpDesk_Download/ 382_51939 now
RT-AC1750_B1 https://www.asus.com/supportonly/RT-AC1750_B1/HelpDesk_BIOS/ 385_20252 now
RT-AC1900 https://www.asus.com.cn/Networking/RT-AC1900/HelpDesk_BIOS/ 385_20252 now
RT-AC1900P https://www.asus.com.cn/Networking/RT-AC1900P/HelpDesk_BIOS/ 385_20252 now
RT-AC1900U https://www.asus.com.cn/Networking/RT-AC1900U/HelpDesk_BIOS/ 385_20252 now
RT-AC3200 https://www.asus.com.cn/Networking/RTAC3200/HelpDesk_BIOS/ 382_51939 now
RT-AC51U https://www.asus.com.cn/Networking/RTAC51U/HelpDesk_BIOS/ 380_8497 now
RT-AC51U+ https://www.asus.com.cn/Networking/RT-AC51U-plus/HelpDesk_BIOS/ 380_10875 now
RT-AC52U B1 https://www.asus.com.cn/Networking/RT-AC52U-B1/HelpDesk_Download/ 380_10875 now
RT-AC66U https://www.asus.com.cn/Networking/RTAC66U/HelpDesk_BIOS/ 382_51641 now
RT-AC66U B1 https://www.asus.com.cn/Networking/RT-AC66U-B1/HelpDesk_BIOS/ 385_20252 now
RT-AC66U_WHITE https://www.asus.com.cn/Networking/RTAC66U/HelpDesk_BIOS/ 382_51641 now
RT-AC68P https://www.asus.com.cn/Networking/RTAC68P/HelpDesk_BIOS/ 385_20252 now
RT-AC68R https://www.asus.com/supportonly/RT-AC68R/HelpDesk_BIOS/ 385_20252 now
RT-AC68RF https://www.asus.com/supportonly/RT-AC68R/HelpDesk_BIOS/ 385_20252 now


02/14/2020 ROG Gaming Center Package 安全更新

ASUS update the ROG Gaming Center Package that includes important security updates.
ASUS would like to thank Eli Paz from CyberArk Labs for the assistance with this security update.

11/26/2019 新固件适用于:RT-AC1750_B1/RT-AC1900/RT-AC1900P/RT-AC1900U/RT-AC86U/RT-AC2900/RT-AC3100/RT-AC3200/RT-AC51U/RT-AC51U+/RT-AC52U B1/RT-AC66U/RT-AC66U B1/RT-AC66U_WHITE/RT-AC67U/RT-AC68P/RT-AC68R/RT-AC68RF/RT-AC68RW/RT-AC68U/RT-AC68U 2 Pack/RT-AC68U_WHITE/RT-AC68W/RT-AC750/RT-AC87R/RT-AC87U/RT-AC87W/RT-N66U/RT-N66U_C1/RT-N14U

ASUS is releasing a firmware update for selected routers. Our most recent firmware update contains enhanced security protections against unauthorized access, alteration, disclosure of data, malware, phishing and DDoS attacks.

We strongly encourage you to periodically audit both your equipment and your security procedures, as this will ensure that you will be better protected against unwanted intrusion. As a user of an ASUS router, we advise taking the following actions:

  1. Update your router to the latest firmware. We strongly recommend that you do so as soon as new firmware is released. You will find the latest firmware available for download from the ASUS support page at https://www.asus.com/support/ or the appropriate product page at https://www.asus.com.cn/Networking/. ASUS has provided a link to new firmware for selected routers at the end of this notice.
  2. Set up separate passwords for your wireless network and router-administration page. Use passwords with a length of at least eight characters, including a mix of capital letters, numbers and symbols. Do not use the same password for multiple devices or services.
  3. Enable ASUS AiProtection, if your router supports this feature. Instructions on how to do this can be found in your router’s manual, or on the relevant ASUS support page, at https://www.asus.com.cn/Networking/.


Please note that if you choose not to install this new firmware version then, to avoid any potential unwanted intrusion, we strongly recommend that you disable remote access from WAN or AiCloud, and reset your router to its default settings.

If you have already installed the latest firmware version, please disregard this notice.

Should you have any question or concerns, please contact ASUS via our Security Advisory reporting system: https://www.asus.com/securityadvisory/

For further help with router setup and an introduction to network security, please visit
https://www.asus.com/support/FAQ/1008000
https://www.asus.com/support/FAQ/1039292

Model name Support site path Firmware version Ready time
RT-AC1750_B1 https://www.asus.com/supportonly/RT-AC1750_B1/HelpDesk_BIOS/ 384_81351 now
RT-AC1900 https://www.asus.com.cn/Networking/RT-AC1900/HelpDesk_BIOS/ 384_81351 now
RT-AC1900P https://www.asus.com.cn/Networking/RT-AC1900P/HelpDesk_BIOS/ 384_81351 now
RT-AC1900U https://www.asus.com.cn/Networking/RT-AC1900U/HelpDesk_BIOS/ 384_81351 now
RT-AC86U https://www.asus.com.cn/Networking/RT-AC86U/HelpDesk_BIOS/ 384_81351 now
RT-AC2900 https://www.asus.com.cn/Networking/RT-AC2900/HelpDesk_BIOS/ 384_81351 now
RT-AC3200 https://www.asus.com.cn/Networking/RTAC3200/HelpDesk_BIOS/ 382_51641 now
RT-AC51U https://www.asus.com.cn/Networking/RTAC51U/HelpDesk_BIOS/ 380_8497 now
RT-AC51U+ https://www.asus.com.cn/Networking/RT-AC51U-plus/HelpDesk_BIOS/ 380_10875 now
RT-AC52U B1 https://www.asus.com.cn/Networking/RT-AC52U-B1/HelpDesk_Download/ 380_10875 now
RT-AC66U https://www.asus.com.cn/Networking/RTAC66U/HelpDesk_BIOS/ 382_51634 now
RT-AC66U B1 https://www.asus.com.cn/Networking/RT-AC66U-B1/HelpDesk_BIOS/ 384_81351 now
RT-AC66U_WHITE https://www.asus.com.cn/Networking/RTAC66U/HelpDesk_BIOS/ 384_81351 now
RT-AC67U https://www.asus.com.cn/Networking/AiMesh-AC1900-WiFi-System-RT-AC67U-2-Pack/HelpDesk_BIOS/ 384_81351 now
RT-AC68P https://www.asus.com.cn/Networking/RTAC68P/HelpDesk_BIOS/ 384_81351 now
RT-AC68R https://www.asus.com/supportonly/RT-AC68R/HelpDesk_BIOS/ 384_81351 now
RT-AC68RF https://www.asus.com/supportonly/RT-AC68R/HelpDesk_BIOS/ 384_81351 now
RT-AC68RW https://www.asus.com/supportonly/RT-AC68R/HelpDesk_BIOS/ 384_81351 now
RT-AC68U https://www.asus.com.cn/Networking/RTAC68U/HelpDesk_BIOS/ 384_81351 now
RT-AC68U 2 Pack https://www.asus.com.cn/Networking/AiMesh-AC1900-WiFi-System-RT-AC68U-2-Pack/HelpDesk_BIOS/ 384_81351 now
RT-AC68U_WHITE https://www.asus.com/us/Networking/RTAC68W/HelpDesk_BIOS/ 384_81351 now
RT-AC68W https://www.asus.com/us/Networking/RTAC68W/HelpDesk_BIOS/ 384_81351 now
RT-AC750 https://www.asus.com/supportonly/RT-AC750/HelpDesk_BIOS/ 380_8497 now
RT-AC87R https://www.asus.com/us/supportonly/RT-AC87R/HelpDesk_BIOS/ 382_51641 now
RT-AC87U https://www.asus.com.cn/Networking/RTAC87U/HelpDesk_BIOS/ 382_51641 now
RT-AC87W https://www.asus.com.cn/Networking/RTAC87U/HelpDesk_BIOS/ 382_51641 now
RT-N66U https://www.asus.com.cn/Networking/RTN66U/HelpDesk_BIOS/ 382_51641 now
RT-N66U_C1 https://www.asus.com.cn/Networking/RT-N66U-C1/HelpDesk_BIOS/ 384_81351 now
RT-N14U https://www.asus.com.cn/Networking/RTN14U/HelpDesk_BIOS/ 380_8497 now


11/15/2019 关于 ASUSWRT 安全的重要信息:
  1. ASUSWRT is the name of the router’s firmware and web interface. It does not refer to any iOS, iPadOS or Android app.
  2. ASUS engineers performed internal tests on ASUSWRT using simulated data and there wasn’t any real user data involved in the process. The test is now over and the server has been taken offline since.
  3. Any reports alleging the application of real user data during the ASUSWRT test are inaccurate and misleading.

If there are any questions or concerns, please contact ASUS via our Security Advisory reporting system: https://www.asus.com/securityadvisory/

For further help with router setup and an introduction to network security, please visit https://www.asus.com/support/FAQ/1039292

10/21/2019 ATK Package 安全更新(CVE-2019-19235)适用于华硕笔记本电脑

漏洞:CVE-2019-19235

AsLdrSrv.exe in ASUS ATK Package before V1.0.0061 (for Windows 10 notebook PCs) could lead to unsigned code execution with no additional execution. The user must put an application at a particular path, with a particular file name.

ASUS has released a new version (1.0.0061) of ATK Package for Win 10 notebook PCs that includes important security updates. ASUS recommends that users with Win 10 notebook PCs running ATK Package version 1.0.0060 and all prior versions update to the latest version. To check the installed version of ATK Package and to download the latest version, visit https://www.asus.com/support/faq/1041545.

ASUS would like to thank Peleg Hadar from SafeBreach Labs for the assistance with this security update.

06/14/2019 BIOS 更新公告适用于华硕笔记本电脑

ASUS has released a BIOS update for notebook PCs to ensure a more secure and convenient computing experience. This update only affects users who currently have a password for their BIOS or hard drive. Concerned users with a password should install the new BIOS update via Windows Update or refer to the instruction from https://www.asus.com/support/FAQ/1040162.
*ASUS would like to thank Frédéric Vachon from ESET for helping find out this issue.

05/16/2019 新固件适用于:RT-AC1750_B1/RT-AC1900/RT-AC1900P/RT-AC1900U/RT-AC2900/RT-AC3100/RT-AC3200/RT-AC51U/RT-AC5300/RT-AC56S/RT-AC56U/RT-AC66U/RT-AC66U B1/RT-AC66U_WHITE/RT-AC67U/RT-AC68P/RT-AC68R/RT-AC68RF/RT-AC68RW/RT-AC68U/RT-AC68U 2 Pack/RT-AC68U_WHITE/RT-AC68W/RT-AC750/RT-AC86U/RT-AC87R/RT-AC87U/RT-AC87W/RT-AC88U/RT-N18U/RT-N66U/RT-N66U_C1

ASUS is releasing a firmware update for selected routers. Our most recent firmware update contains enhanced security protections against unauthorized access, alteration, disclosure of data, malware, phishing and DDoS attacks.

We strongly encourage you to periodically audit both your equipment and your security procedures, as this will ensure that you will be better protected against unwanted intrusion. As a user of an ASUS router, we advise taking the following actions:

  1. Update your router to the latest firmware. We strongly recommend that you do so as soon as new firmware is released. You will find the latest firmware available for download from the ASUS support page at https://www.asus.com/support/ or the appropriate product page at https://www.asus.com.cn/Networking/. ASUS has provided a link to new firmware for selected routers at the end of this notice.
  2. Set up separate passwords for your wireless network and router-administration page. Use passwords with a length of at least eight characters, including a mix of capital letters, numbers and symbols. Do not use the same password for multiple devices or services.
  3. Enable ASUS AiProtection, if your router supports this feature. Instructions on how to do this can be found in your router’s manual, or on the relevant ASUS support page, at https://www.asus.com.cn/Networking/.


Please note that if you choose not to install this new firmware version then, to avoid any potential unwanted intrusion, we strongly recommend that you disable remote access from WAN or AiCloud, and reset your router to its default settings.

If you have already installed the latest firmware version, please disregard this notice.

Should you have any question or concerns, please contact ASUS via our Security Advisory reporting system: https://www.asus.com/securityadvisory/

For further help with router setup and an introduction to network security, please visit
https://www.asus.com/support/FAQ/1008000
https://www.asus.com/support/FAQ/1039292

Model name Support site path Firmware version Ready time
RT-AC1750_B1 https://www.asus.com/supportonly/RT-AC1750_B1/HelpDesk_BIOS/ 384_45717 now
RT-AC1900 https://www.asus.com.cn/Networking/RT-AC1900/HelpDesk_BIOS/ 384_45717 now
RT-AC1900P https://www.asus.com.cn/Networking/RT-AC1900P/HelpDesk_BIOS/ 384_45717 now
RT-AC1900U https://www.asus.com.cn/Networking/RT-AC1900U/HelpDesk_BIOS/ 384_45717 now
RT-AC2900 https://www.asus.com.cn/Networking/RT-AC2900/HelpDesk_BIOS/ 384_45717 now
RT-AC3100 https://www.asus.com.cn/Networking/RT-AC3100/HelpDesk_BIOS/ 384_45717 now
RT-AC3200 https://www.asus.com.cn/Networking/RTAC3200/HelpDesk_BIOS/ 382_51634 now
RT-AC51U https://www.asus.com.cn/Networking/RTAC51U/HelpDesk_BIOS/ 380_8496 now
RT-AC5300 https://www.asus.com.cn/Networking/RT-AC5300/HelpDesk_BIOS/ 384_45717 now
RT-AC56S https://www.asus.com.cn/Networking/RTAC56S/HelpDesk_BIOS/ 382_51634 now
RT-AC56U https://www.asus.com.cn/Networking/RTAC56U/HelpDesk_BIOS/ 382_51634 now
RT-AC66U https://www.asus.com.cn/Networking/RTAC66U/HelpDesk_BIOS/ 382_51634 now
RT-AC66U B1 https://www.asus.com.cn/Networking/RT-AC66U-B1/HelpDesk_BIOS/ 384_45717 now
RT-AC66U_WHITE https://www.asus.com.cn/Networking/RTAC66U/HelpDesk_BIOS/ 382_51634 now
RT-AC67U https://www.asus.com.cn/Networking/AiMesh-AC1900-WiFi-System-RT-AC67U-2-Pack/HelpDesk_BIOS/ 384_45717 now
RT-AC68P https://www.asus.com.cn/Networking/RTAC68P/HelpDesk_BIOS/ 384_45717 now
RT-AC68R https://www.asus.com/supportonly/RT-AC68R/HelpDesk_BIOS/ 384_45717 now
RT-AC68RF https://www.asus.com/supportonly/RT-AC68R/HelpDesk_BIOS/ 384_45717 now
RT-AC68RW https://www.asus.com/supportonly/RT-AC68R/HelpDesk_BIOS/ 384_45717 now
RT-AC68U https://www.asus.com.cn/Networking/RTAC68U/HelpDesk_BIOS/ 384_45717 now
RT-AC68U 2 Pack https://www.asus.com.cn/Networking/AiMesh-AC1900-WiFi-System-RT-AC68U-2-Pack/HelpDesk_BIOS/ 384_45717 now
RT-AC68U_WHITE https://www.asus.com/us/Networking/RTAC68W/HelpDesk_BIOS/ 384_45717 now
RT-AC68W https://www.asus.com/us/Networking/RTAC68W/HelpDesk_BIOS/ 384_45717 now
RT-AC750 https://www.asus.com/supportonly/RT-AC750/HelpDesk_BIOS/ 380_8496 now
RT-AC86U https://www.asus.com.cn/Networking/RT-AC86U/HelpDesk_BIOS/ 384_45717 now
RT-AC87R https://www.asus.com/us/supportonly/RT-AC87R/HelpDesk_BIOS/ 382_51634 now
RT-AC87U https://www.asus.com.cn/Networking/RTAC87U/HelpDesk_BIOS/ 382_51634 now
RT-AC87W https://www.asus.com.cn/Networking/RTAC87U/HelpDesk_BIOS/ 382_51634 now
RT-AC88U https://www.asus.com.cn/Networking/RT-AC88U/HelpDesk_BIOS/ 384_45717 now
RT-N18U https://www.asus.com/supportonly/RT-N18U/HelpDesk_BIOS/ 382_51634 now
RT-N66U https://www.asus.com.cn/Networking/RTN66U/HelpDesk_BIOS/ 382_51636 now
RT-N66U_C1 https://www.asus.com.cn/Networking/RT-N66U-C1/HelpDesk_BIOS/ 384_45717 now


05/02/2019 最新软件公告适用于 ZenFone 设备

ASUS is aware of the vulnerability listed below. We take your security seriously and are working diligently to provide a software update for the affected ZenFone models. Please update your ZenFone to the latest software version as soon as it becomes available. In the meantime, we highly recommended using ASUS Mobile Manager or installing another reliable third-party security app to further secure your devices.

可能的漏洞:
ASUS Contact

  • Private contacts’ user profiles (name, call log, settings) are liable to be accessed, added or deleted.
  • Information of blacklist (blocked phone numbers) is liable to be accessed, added or deleted.

ASUS Message
  • Private message may be leaked.
  • Any apps can send voice messages without user’s permission.

ASUS Launcher
  • No permissions required to unlock app

The following are some security precautions recommended for all users:
(1) Ensure your operating system and software up to date with the latest version, which you can find on the ASUS website (www.asus.com). Using the search tool located on the top right hand of the ASUS website, search for your device model, and then follow this path: Support > Driver & Utility > Driver & Tools > BIOS & Firmware. Here you can double check if the latest version is the same on your device or you can choose to download it in the event your device did not automatically update.
(2) Do not download any apps outside of Google Play.
(3) Uninstall all apps previously downloaded from non-Google Play sources.
(4) Install ASUS Mobile Manager or a reliable third-party security app to strengthen the security of your devices and applications.


08/14/2018 安全公告适用于 OpenVPN 服务器

漏洞: OpenVPN users are able to log in to the web UI with their password

Solution:
请立即更新华硕路由器固件
If a firmware update cannot be made the mitigations listed below should be applied, however it’s strongly advised the user updates the firmware at the earliest opportunity:
• Disable VPN (available on limited models)
• Change login ID & password again. The password should be at least 8 characters using a mix of letters, numbers and special symbols.

Affected Products
Model Firmware(Minimum Recommended Version)
BRT-AC828 3.0.0.4.380.7526
GT-AC5300 3.0.0.4.384.21045
RT-AC5300 3.0.0.4.384.20942
RT-AC88U 3.0.0.4.384.20942
RT-AC3200 3.0.0.4.382.50470
RT-AC3100 3.0.0.4.384.20942
RT-AC88U 3.0.0.4.382.50702
RT-AC88R 3.0.0.4.382.50702
RT-AC86U 3.0.0.4.384.21045
RT-AC2900 3.0.0.4.384.21045
RT-AC68U 3.0.0.4.384.20942
RT-AC68R 3.0.0.4.384.20942
RT-AC68P 3.0.0.4.384.20942
RT-AC68W 3.0.0.4.384.20942
RT-AC68UF 3.0.0.4.384.20942
RT-AC1900U 3.0.0.4.384.20942
RT-AC1900 3.0.0.4.384.20942
RT-AC56U 3.0.0.4.382.50624
RT-AC56S 3.0.0.4.382.50624
RT-AC66U_B1 3.0.0.4.384.20942
RT-AC1750_B1 3.0.0.4.384.20942
RT-AC66U 3.0.0.4.382.50470
RT-AC66R 3.0.0.4.382.50470
RT-AC66W 3.0.0.4.382.50470
RT-AC55UHP 3.0.0.4.382.50470
RT-AC55U 3.0.0.4.382.50470
RT-AC1200G 3.0.0.4.382.50624
RT-AC1200G+ 3.0.0.4.382.50624
RT-N800HP 3.0.0.4.382.50470
RT-N66U_C1 3.0.0.4.384.20942
RT-N66U 3.0.0.4.382.50470
RT-N18U 3.0.0.4.382.50470
Lyra 3.0.0.4.382.11600
Lyra mini 3.0.0.4.382.11600
Lyra Trio 3.0.0.4.382.20208
BlueCave 3.0.1.4.383.19267


08/07/2018 最新软件公告适用于 ZenFone/ZenPad 设备

ASUS is aware of the vulnerability listed below. We take your security seriously and are working diligently to provide a software update for the affected ZenFone/ZenPad models. Please update your ZenFone/ZenPad to the latest software version as soon as it becomes available. In the meantime, we highly recommended using ASUS Mobile Manager or installing another reliable third-party security app to further secure your devices.

可能的漏洞:
• A malicious app can get a bug report.
• A malicious app can take a screenshot (with a screenshot animation).
• Arbitrary apps can be installed remotely over the internet and can also be uninstalled after being run.
• Commands can be executed as the system user.

The following are some security precautions recommended for all users:
(1) Ensure your operating system and software up to date with the latest version, which you can find on the ASUS website (www.asus.com). Using the search tool located on the top right hand of the ASUS website, search for your device model, and then follow this path: Support > Driver & Utility > Driver & Tools > BIOS & Firmware. Here you can double check if the latest version is the same on your device or you can choose to download it in the event your device did not automatically update.
(2) Do not download any apps outside of Google Play.
(3) Uninstall all apps previously downloaded from non-Google Play sources.
(4) Install ASUS Mobile Manager or a reliable third-party security app to strengthen the security of your devices and applications.

06/08/2018 安全公告适用于 VPNFilter 恶意软件

Talos Intelligence recently discovered that VPNFilter is targeting more makes and models than initial release, and the following ASUS routers may be potential targets:
RT-AC66U
RT-N10 (EOL)
RT-N10E (EOL)
RT-N10U (EOL)
RT-N56U (EOL)
RT-N66U

To help owners of these routers take necessary precautions, we compiled a security checklist:
(1) Reset the device to factory default: Hold the Reset button in the rear for at least five seconds until the power LED starts blinking.
(2) Update all devices to the latest firmware.
(3) Ensure default admin password had been changed to a more secure one.
(4) Disable Remote Management (disabled by default, can only be enabled via Advanced Settings).
(5) Enable the URL filter in the Advanced Settings -> Firewall. Set the Filter table type as Black List. Add the "photobucket" and "toknowall" in the URL filter list.

For any users with the EOL models listed above, we strongly advise upgrading to a router with AiProtection. A wide selection of ASUS and ROG routers offer AiProtection powered by Trend Micro™. Anytime a threat is detected, the connection between your device and the malicious server is blocked before any personal data is compromised. The list of malicious servers is constantly updated by syncing with the Trend Micro cloud database automatically, to ensure your network environment is secure around the clock.

04/03/2018 安全漏洞提示(CVE-2018-5999, CVE-2018-6000)适用于华硕路由器

漏洞: CVE-2018-5999, CVE-2018-6000

ASUS and ROG router products affected are shown in a list below.

This vulnerability bypasses any user/password changes made by the owner.
Possible changes to router settings:

  • Port number changes
  • VPN account & password changes
  • DDNS changes
  • The UI language has changed

Solution:
Please immediately update your ASUS and ROG router to the latest firmware available.
If a firmware update cannot be made the mitigations listed below should be applied, however it’s strongly advised the user updates the firmware at the earliest opportunity:

  • Disable SSH / Telnet
  • Disable VPN (available on limited models)
  • Enable AiProtection (available on limited models)
  • Change login ID & password again. The password should be at least 8 characters using a mix of letters, numbers and special symbols.

Affected Products:
Model Firmware (Minimum Recommended Version)
BRT-AC828 3.0.0.4.380.7432
GT-AC5300 3.0.0.4.384.20287
RT-AC5300 3.0.0.4.384.20287
RT-AC88U 3.0.0.4.384.10007
RT-AC3100 3.0.0.4.384.10007
RT-AC86U 3.0.0.4.384.10007
RT-AC2900 3.0.0.4.384.10007
RT-AC68 series 3.0.0.4.384.10007
RT-AC1900 series 3.0.0.4.384.10007
RT-AC66U_B1 3.0.0.4.384.10007
RT-AC1750_B1 3.0.0.4.384.10007
RT-AC87 series 3.0.0.4.382.50010
RT-AC3200 3.0.0.4.382.50010
RT-AC56U 3.0.0.4.382.50010
RT-AC55U 3.0.0.4.382.50018
RT-AC1200 3.0.0.4.380.10446
RT-N18U 3.0.0.4.382.39935
RT-AC51U+ 3.0.0.4.380.10446
RT-AC52U_B1 3.0.0.4.380.10446
Lyra 3.0.0.4.382.11572
Lyra mini 3.0.0.4.382.11572
RT-AC66U 3.0.0.4.380.8228
RT-N66U 3.0.0.4.380.8228
RT-N600 3.0.0.4.380.10446
RT-AC1200GU 3.0.0.4.380.10446
RT-AC1200G 3.0.0.4.382.50276
RT-AC1200G+ 3.0.0.4.382.50276
RT-AC53 3.0.0.4382.10446
RT-AC750GF 3.0.0.4382.10446
RT-AC53U 3.0.0.4.380.8228
RT-N12_D1 3.0.0.4.380.8228
RT-N12HP_B1 3.0.0.4.380.8228
RT-AC56S 3.0.0.4.382.50624
RT-N14U 3.0.0.4.380.8285
RT-N14UHP 3.0.0.4.380.8287
RT-AC54U 3.0.0.4.380.8228
RT-ACRH17 3.0.0.4.382.50243
RT-AC55UHP 3.0.0.4.382.50276
RT-N300 3.0.0.4.380.8228
RT-AC1200HP 3.0.0.4.380.8228
RT-AC51U 3.0.0.4.380.8228
RT-AC750 3.0.0.4.380.8228
RT-AC52U 3.0.0.4.380.8241
RT-AC58U 3.0.0.4.380.8228
RT-ACRH13 3.0.0.4.380.8228
RT-AC1300UHP 3.0.0.4.380.8228
RT-N11P_B1 3.0.0.4.380.10410
RT-N300_B1 3.0.0.4.380.10410
RT-N12 VP_B1 3.0.0.4.380.10410
RT-N12+ B1 3.0.0.4.380.10410
RT-N12+ PRO 3.0.0.4.380.10410
RT-N12E C1 3.0.0.4.380.10410


12/30/2017 新固件适用于无线路由器 GT-AC5300/ RT-AC5300/ RT-AC88U/ RT-AC3100/ RT-AC87U/ RT-AC87R/ RT-AC3200/ RT-AC86U/ RT-AC68 series/ RT-AC55U/ RT-N18U/
10/31/2017 WPA2 协议漏洞的安全公告更新

ASUS is working closely with chipset suppliers to resolve the vulnerability in the WPA2 security protocol, which affects some but not all ASUS products (check the list below). KRACK can exploit the vulnerability only under certain conditions highlighted in the previous update. Your network configuration is more secure when under these conditions:

(1) Routers and gateways working in their default mode (Router Mode) and AP Mode.
(2) Range extenders working in AP Mode.
(3) When Powerline adapters and switch products are used.

ASUS is working actively towards a solution, and will continue to post software updates. Find out more: https://www.asus.com/support/

Full list of routers unaffected by KRACK while in default mode:
GT-AC5300
RT-AC1200
RT-AC1200G
RT-AC1200G Plus
RT-AC1200HP
RT-AC1300HP
RT-AC1900
RT-AC1900P
RT-AC3100
RT-AC3200
RT-AC51U
RT-AC52U
RT-AC53
RT-AC5300
RT-AC53U
RT-AC54U
RT-AC55U
RT-AC55UHP
RT-AC56S
RT-AC56U
RT-AC58U
RT-AC66U
RT-AC66U B1
RT-AC66W
RT-AC68P
RT-AC68UF
RT-AC68W
RT-AC86U
RT-AC87U
RT-AC88U
RT-ACRH17
RT-ACRH13
RT-N10P V3
RT-N11P B1
RT-N12 D1
RT-N12 VP B1
RT-N12+
RT-N12+ B1
RT-N12E C1
RT-N12E_B1
RT-N12HP B1
RT-N14U
RT-N14UHP
RT-N16
RT-N18U
RT-N300 B1
RT-N56U
RT-N56U B1
RT-N65U
RT-N66U
RT-N66W
BRT-AC828
DSL-AC87VG
DSL-AC52U
DSL-AC55U
DSL-AC56U
DSL-AC68R
DSL-AC68U
DSL-N10_C1
DSL-N12E_C1
DSL-N12HP
DSL-N12U
DSL-N12U B1
DSL-N12U D1
DSL-N12U_C1
DSL-N14U
DSL-N14U B1
DSL-N16
DSL-N16U
DSL-N17U
DSL-N55U D1
DSL-N55U_C1
4G-AC68U
RT-AC65U
RT-AC85U

10/18/2017 安全公告适用于 WPA2 协议的安全漏洞

ASUS is aware of the recent WPA2 vulnerability issue. We take your security and privacy seriously and are currently working towards a full solution as quickly as possible. In the meantime, we want to help clarify the severity of the potential threat, and let our valued customers know the appropriate steps to take in order to avoid or lessen the threat of being compromised.

Your devices are only vulnerable if an attacker is in physical proximity to your wireless network and is able to gain access to it. This exploit cannot steal your banking information, passwords, or other data on a secured connection that utilizes proper end-to-end encryption. However, an attacker could capture and read this information on an unsecured connection via an exploited WiFi network. Depending on the network configuration, it is also possible for the attacker to redirect network traffic, send invalid data to devices or even inject malware into the network.

We are feverishly working with chipset suppliers to resolve this vulnerability and will release patched firmware for affected routers in the near future. Before this patched firmware is released, here are a few cautions all users should take:

(1) Avoid public Wi-Fi and Hotspots until the routers and your devices are updated. Use cellular network connections if possible.
(2) Only connect to secured services that you trust or have been verified. Web pages that use HTTPS or another secure connection will include HTTPS in the URL. If the connection is secured using TLS 1.2 your activities with that service is safe for now.
(3) Keep your operating system and antivirus software up-to-date. Microsoft recently updated Windows to fix this exploit on their latest operating systems. Google and Apple are following suit shortly.
(4) When in doubt, be safe and use your cellular network or a wired connection (Ethernet) to access the internet. This exploit only affects 802.11 traffic between a Wi-Fi router and a connected device on an exploited WiFi connection.

04/26/2017 新固件适用于无线路由器 RT-AC88U/ 无线路由器 RT-AC66U B1
04/24/2017 新固件适用于无线路由器 RT-AC5300/ 无线路由器 RT-AC3100
04/14/2017 新固件适用于无线路由器 RT-AC53
03/31/2017 新固件适用于无线路由器 RT-AC87U/ RT-AC87R/ RT-AC3200/ RT-AC68U/ RT-AC68R/ RT-AC68W/ RT-AC68P/ RT-AC1900P/ RT-AC66U/ RT-AC66R/ RT-AC1750/ RT-AC56U/ RT-AC56R/ RT-N66U/ RT-N66R/ RT-N66W/ RT-AC53U/ RT-AC51U/ RT-AC750/ RT-N300/ RT-N11P/ RT-N12+/ RT-N12+ Pro/ RT-N12E B1/
03/24/2017 新软件适用于无线网卡 PCE-AC56
12/23/2016 新固件适用于无线路由器 RT-AC5300 / RT-AC88U / RT-AC3100 / RT-AC3200 / RT-AC87U / RT-AC87R / RT-AC66U / RT-AC66W / RT-AC1750 / RT-AC55UHP / RT-AC55U / RT-AC52U / RT-N56U / RT-N12 D1
12/13/2016 新固件适用于无线路由器 RT-AC68U / RT-AC68R / RT-AC68W / RT-AC68UF / RT-AC68P / RT-AC1900P / RT-AC1900 / RT-AC66U_B1
10/29/2016 新固件适用于Repeater RP-N12 / RP-N14 / RP-N53 / RP-AC52/ RP-AC56/ Media Bridge EA-N66/ EA-N66R

10/17/2016 新 ATK 驱动程序可用于笔记本电脑 K53SV
09/10/2016 新固件适用于 RT-AC66U / RT-AC66R / RT-AC66W / RT-AC1750

名人堂

我们由衷感谢下列人员负责任地向我们进行了披露。他们是首批通知证实的漏洞且同意经由华硕电脑公司进行修复的报告人,感谢你们并祝贺你们展示了自己的专业技能、安全知识及负责任的行为。

2021 ∇
April 2021:
  • Ashik Kunjumon
  • Deepak Kumar Singh
  • ZeddYu Lu
March 2021:
  • Ye Li (From Tencent Security Xuanwu Lab.)
  • Zhuo Ma (From Tencent Security Xuanwu Lab.)
  • Chris Bellows, Darren Kemp – Atredis Partners
  • Milan Kyselica and Roman Stevanak LIFARS
  • 李想 清华大学NISL实验室
  • Abdulaziz Almisfer
  • Bader Almutairi
  • Chirag Soni
  • Harinder Singh
  • Denis Straghkov, Grigoriy Ivanov, Palchikov Pavel
February 2021:
  • Daniel Moura (@opps3c)
  • Pankaj Thakur
  • Wai Yan Aung
  • Denis Straghkov, Grigoriy Ivanov, Palchikov Pavel
  • Jehad Al-qurashi (TW : Je_1r)
  • Omar Al-talhi (IG : eltd)
  • Ali Al-shehri(IG : zi9r)
  • Khalid Al-harthi (IG : luis90o)
2020 ∇
December 2020:
  • Muhammed Sadettin KARATAŞ
  • Tolgahan Demirayak
  • 施伟铭 @ 长亭科技
November 2020:
  • Md. Nur A Alam Dipu
  • Fatih Çelik
  • Бодиштяну Богдан
October 2020:
  • Dasari Chandra Mouli (@chanducs_)
  • Gal Nagli (@naglinagli)
  • Md. Nur A Alam Dipu
  • swings & leommxj &chennan, from Chaitin Security Research Lab.
September 2020:
  • Siwong kim (@SNTWORKS)
  • Santosh Kumar
  • Matt Moran
  • Marc Ruef
  • Jai Kumar B
  • Gal Nagli (@naglinagli)
  • Vedant Tekale (@_justynot)
August 2020:
  • Prince Prafull
  • Gal Nagli
  • Ahmad A Abdulla
  • Robert Chen
  • tejas.pingulkar
July 2020:
  • Mritunjay Kumar
  • Matt Moran
  • Rhitik Wadhvana
  • Robert Foggia
June 2020:
  • Ahmet Said Göksu
  • Amr Al Hallak
  • Mehmet Can GÜNEŞ
  • Niels Teusink
  • Michael van Griensven
May 2020:
  • Agrah Jain
  • Mehedi Hasan Remon (@mehedi1194)
  • Naveen Kumawat (nvk)
  • Salonee Jaiswal
  • Shankar R
  • Wai Yan Aung
April 2020:
  • Jinwei Chen (Bangcle Security)
  • SecurityMate (@securitymate)
  • Steffin Stanly
  • Wai Yan Aung
March 2020:
  • Hein HtetAung
  • Lütfü Mert Ceylan
  • Wai Yan Aung
  • Yusuf Kocadaş
February 2020:
  • Ishan Anand
  • João Varelas
  • مصطفى محمود
  • Romon Wafa
  • Wai Yan Aung
January 2020:
  • Joby Y Daniel
  • Pritam Mukherjee
  • Raphael Karger
  • Wai Yan Aung
2019 ∇
December 2019:
  • Sonam Kumar
  • pr0v3rbs of KAIST SysSec
  • Martin Rakhmanov
November 2019:
  • Mustafa Diaa (@c0braBaghdad1)
  • Hasnain Shaukat
  • Wai Yan Aung
October 2019:
  • Matt Langlois
  • Pankaj Kumar Thakur (NEPAL)
  • Rafid Hasan Khan
  • S Naveen Kumar, Ernst & Young (Chennai), Security Analyst
  • Satish Khadka
  • Sourajeet Majumder
  • Wai Yan Aung
  • Peleg Hadar from SafeBreach Labs
September 2019:
  • Ahmad Halabi
  • Moaied Nagi Hassan(moonlight)
  • Mustafa Diaa (@c0braBaghdad1 )
  • Sourajeet Majumder
  • Wai Yan Aung
August 2019:
  • Pankaj Kumar Thakur (Nepal)
  • Mustafa Diaa (@c0braBaghdad1 )
  • Wai Yan Aung
  • Athanasios Tserpelis of Telspace Systems
July 2019:
  • Mohammed Ahmad
  • Wai Yan Aung
June 2019:
  • Naufal Septiadi
  • Sattar Jabbar
  • S1mba Lu
May 2019:
  • Leron Gray
  • Mark Wemhöner
  • Matt Cundari
  • Abdualrhman Muzamil ( RespondTeam.com )
  • Harsh Joshi
  • Khun Myat
  • Mustafa Diaa (@c0braBaghdad1 )
  • Nyi Htet Aung
  • Tao SAUVAGE
  • Zika Ds
April 2019:
  • Aamir Usman Khan
  • Khun Myat
  • Ko Ko Naing
  • Mustafa Diaa ( @c0braBaghdad1 )
  • Nyi Htet Aung
  • Pranshu Tiwari
  • Tarun Mahour
  • Wai Yan Aung
  • Tao Sauvage, IOActive, Senior Security Consultant
March 2019:
  • Priyanshu Gupta
  • Wai Yan Aung
  • Talib Osmani
  • Javier Aguinaga
  • Chaoyi Lu
  • Resecurity International
February 2019:
  • Salman Sajid Khan
  • Tijo Davis
  • Roy Solberg
  • CodeBreaker of STARLabs
  • Ronnie
January 2019:
  • Mustafa Kemal Can
  • Jesus Arturo Espinoza Soto
  • Wai Yan Aung
  • JAIMEivanM mendoza ribera
  • Suraj Gourkar
  • Sabeer Bijapur
2018 ∇
December 2018:
  • Hamza Mandil
  • bharat
  • Mustafa Khan
  • AbdelRhman Adel
  • Mohammed Adam
  • Thejus Krishnan
November 2018:
  • Numan ÖZDEMİR
  • Hazem Osama
  • Pyae Phyoe Thu
  • Hein Thant Zin
  • Ram Makwana
  • Wai Yan Aung
October 2018:
  • Himanshu Rahi
  • Ashik S N
  • Dhiyaneshwaran
  • Wai Yan Aung
  • Pratik Raut
  • CYBERNETIV DIGITAL
  • Duda, Przemyslaw
September 2018:
  • Ruikai Liu
  • Fakhri Zulkifli
  • Matthew Cundari
  • Deepanshu Tyagi
  • Mayank
  • Baiqing Lyu (吕柏庆)
August 2018:
  • El-Staifi
  • Wai Yan Aung
  • Bill Ben Haim
  • Sumit Sahoo
  • Lakshay Gupta
  • tty0
July 2018:
  • Rick Ramgattie
  • Nishant Saurav
  • Mohammed Adel
  • Wai Yan Aung
  • Pethuraj M
June 2018:
  • Lawrence Amer
  • Alban Cenaj
  • Wai Yan Aung
May 2018:
  • Yeasir Arafat
  • Anil Tom
  • Sara Badran
April 2018:
  • Yonghui Han of Fortinet's FortiGuard Labs
  • Dmitriy Alekseev
  • Fish Getachew
  • Nathu Nandwani
  • Nicodemo Gawronski & Ana Maria Popescu @amiutza
  • Diego Juarez from Core Security Technologies for Elevation of Privilege vulnerability in Asus Aura Sync.
  • Mohamed A. Baset of Seekurity.com SAS de C.V.
March 2018:
  • Emad Abou Shanab
  • Konduru Jashwanth
  • Nikhil Srivastava
  • Dan Nino I. Fabro.
  • Kunal Bahl
February 2018:
  • HaoTian Xiang
  • Niv Levi
  • Chris Wood
  • Vasim Shaikh (India)
  • Wen Bin Kong
  • Florian Kunushevci
  • Pritesh Mistry
  • Ismail Tasdelen
January 2018:
  • Dipak Prajapati
  • Vasim Shaikh (India)
  • Akaash M. Sharma
  • Kushal Sharma
  • Adesh Nandkishor Kolte
  • Chirag Gupta
  • Osanda Malith Jayathissa (@OsandaMalith)
  • Chacko K Abraham
  • Suvadip Kar
  • Ankit Singh Nikhil Sahoo and Ipsita Subhadarshan Sahoo
  • Yassine Nafiai
  • Guy Arazi
2017 ∇
December 2017:
  • Blazej Adamczyk
  • Joaquim Espinhara
  • Beyond Security’s SecuriTeam Secure Disclosure program
  • David Maciejak of Fortinet's FortiGuard Labs
November 2017:
  • Ketankumar Godhani
  • Ankit Singh
  • Junaid Farhan
October 2017:
  • Daniel Diez
  • Sankalpa Nirmana
  • Vyshnav Vizz
September 2017:
  • Samet Şahin
  • Ranjeet Jaiswal
August 2017:
  • Yoko
  • Sreedeep Ck Alavil
April 2017:
  • Cool Alfaiz
  • Manav Infosec
  • Mohammad Abdullah
March 2017:
  • Cool Alfaiz
January 2017:
  • CDL
2016 ∇
December 2016:
  • Kishan Kumar
October 2016:
  • Yunus Yildirim
  • Muhammad Hammad
  • Chris
September 2016:
  • Steave Afters
  • Jhack

联系我们

如果您对安全公告页面有任何疑问、意见、建议,请联系:security@asus.com.


自2020年以来推出的所有华硕路由器均将接受至少三年的安全更新。