【Vulnerability Alert】 Security Vulnerability Found in ASUS RT-AX55 Wireless Router (CVE-2023-39780), Please Verify and Patch Immediately

• Subject Description:【Vulnerability Alert】Security Vulnerability Found in ASUS RT-AX55 Wireless Router (CVE-2023-39780), Please Verify and Patch Immediately

• Content Description:
  • Forwarded from National Information Sharing and Analysis Center NISAC-200-202506-00000015
  • Recently, researchers have discovered attack activities targeting a known OS command injection vulnerability (CVE-2023-39780) in the ASUS RT-AX55 wireless router. Remote attackers with general access privileges can inject arbitrary OS commands into specific parameters and execute them on the device. This vulnerability has already been exploited by hackers. Please verify and patch immediately.
• Affected Platform:
  • RT-AX55 firmware version 3.0.0.4.386.51598
• Recommended Actions:
  • Please update the firmware to version 3.0.0.4.386_51948 or later
• Reference Information:
  1. https://nvd.nist.gov/vuln/detail/CVE-2023-39780
  2. https://nvd.nist.gov/vuln/detail/CVE-2023-41345
  3. https://nvd.nist.gov/vuln/detail/CVE-2023-41346
  4. https://nvd.nist.gov/vuln/detail/CVE-2023-41347
  5. https://nvd.nist.gov/vuln/detail/CVE-2023-41348
  6. https://www.asus.com/content/asus-product-security-advisory/
  7. https://ithome.com.tw/news/169322

Computer and Communication Center
Network Systems Division, Respectfully