BIOS & FIRMWARE
- Driver & Tools
- BIOS & FIRMWARE
- Fixed stored XSS vulnerability
- Fixed buffer overflow vulnerability
The update server transport layer security was upgraded and the old protocol was removed.
Please refer to http://asus.me/firmwareen to update the firmware.
Please unzip the firmware file first then check the MD5 code.
MD5: cf231627d7c337848bba2aa6b93360b7
Fixed a DDoS vulnerability
Please unzip the firmware file first then check the MD5 code.
MD5: a541a9b1fe081b68a4c4b5a0d47f06f2
Support repeater mode
Security Fix
- Fixed DDoS vulnerability.
- Fixed AiCloud vulnerability. Thanks for Matt Cundari's contribution.
- Fixed command injection vulnerability. Thanks for S1mba Lu's contribution.
- Fixed buffer overflow vulnerability. Thanks for Javier Aguinaga's contribution.
- Fixed CVE-2018-20334
- Fixed CVE-2018-20336
- Fixed null pointer issue. Thanks for CodeBreaker of STARLabs’ contribution.
- Fixed AiCloud buffer overflow vulnerability. Thanks for Resecurity International's contribution.
Please unzip the firmware file first then check the MD5 code.
MD5: e72758ed54d4a0113804f8fe7d5f14d5
Security fixes:
- Fixed Reflected XSS vulnerability.
- Fixed CSRF vulnerability.
- Fixed command injection vulnerability.
- Fixed stack buffer overflow vulnerability.
Thanks for Rick Ramgattie contribution.
Please unzip the firmware file first then check the MD5 code.
MD5:780b381bf9236b08ded2a41ef98d5862
Fixed the bug which client list show incorrectly on APP.
Please unzip the firmware file first then check the MD5 code.
MD5: 097324c1704c97e0bd246a29de2a0208
- Modified Quick Internet Setup wizard process.
- Modified the EULA for DDNS.
- Fixed NTP time zone synchronization bug.
- Main SSID and guest network can hide independently.
Please unzip the firmware file first then check the MD5 code.
MD5: 412c1fee20a45a4311cc9fc0fbabb81b
- Improved system stability.
- Fixed XSS vulnerability. Thanks to Yonghui Han of Fortinet's FortiGuard Labs.
- Fixed CVE-2018-8877, CVE-2018-8878, CVE-2018-8879
- Fixed plain text password vulnerability in lighttpd.
- Fixed AiCloud login bugs.
- Modified Quick Internet Setup wizard process.
Please unzip the firmware file first then check the MD5 code.
MD5: 03c2325e54ea76b5e3c5cfdf657f7c0b