CVE-2025-59371 | THREATINT

Description

An authentication bypass vulnerability has been identified in the IFTTT integration feature. A remote, authenticated attacker could leverage this vulnerability to potentially gain unauthorized access to the device. This vulnerability does not affect Wi-Fi 7 series models. Refer to the 'Security Update for ASUS Router Firmware' section on the ASUS Security Advisory for more information.

PUBLISHED Reserved 2025-09-15 | Published 2025-11-25 | Updated 2025-11-25 | Assigner ASUS

HIGH: 7.5CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Problem types

CWE-330: Use of Insufficiently Random Values

Product status

Default status

unaffected

3.0.0.4_386

affected

3.0.0.4_388

affected

3.0.0.6_102

affected

References

www.asus.com/security-advisory/ vendor-advisory

cve.org (CVE-2025-59371)

nvd.nist.gov (CVE-2025-59371)

Download JSON