This version of firmware is only applicable to ZenWiFi ET8 of HW Ver: 2.0, please check the product label before utilizing. You can check the hardware version from the product SN label or box label.

Initial firmware release

Please unzip the firmware file, and then verify the checksum.
SHA256: df26072060912a027fac506c6acdd5d6994dfe47102d301c3d9731f250250cdc

This version of firmware is only applicable to ZenWiFi ET8 of HW Ver: 1.0, please check the product label before utilizing. You can check the hardware version from the product SN label or box label.

New features:
1.Plug, Share & Surf: Turn Your ET8 into a 4G/5G Hotspot. Unleash the power of 4G and 5G connectivity without the need for a new router. With your ASUS router and smartphone, you can access high-speed internet instantly. It's as simple as plugging in your phone and sharing its network. Please refer to https://asus.click/AutobackupWAN
2.DDNS transfer allows you to transfer your ASUS DDNS hostname from your original router to the new one. Please refer to https://asus.click/ASUSDDNS
3.Built-in Surfshark in VPN Fusion allows you to surf the internet anonymously and securely from anywhere by encrypting connections. Please refer to https://asus.click/SurfsharkVPN
4.Supported WireGuard VPN server and client.
5.Supported VPN fusion. It can easily achieve VPN connection to network devices like Smart TV, Game consoles and without installing the VPN client software.
6.Supported new devices connection notification.
7.Supported connection diagnostic on the ASUS router app.
8.Supported Instant Guard 2.0 which helps easily invite family or friends to join the VPN connection.
9.Upgraded parental control and added reward, new scheduler for flexible setting

Security updates:
1.Enabled and supported ECDSA certificates for Let's Encrypt.
2.Allowed binding DDNS to a user's account to reduce the risk of MITM attacks
3.Enhanced protection for credentials.
4.Enhanced protection for OTA firmware updates.
5.Fixed CVE-2023-34359,CVE-2023-34358 Unauthenticated Denial of Service
6.Fixed CVE-2023-34360 Stored XSS
7.Fixed DoS vulnerabilities in firewall configuration pages.
8.Fixed DoS vulerabilities in httpd.
9.Fixed information disclosure vulnerability.
10.Fixed CVE-2023-28702 and CVE-2023-28703.
11.Fixed null pointer dereference vulnerabilities.
12.Fixed the cfg server vulnerability.
13.Fixed the vulnerability in the logmessage function CVE-2023-35086/ CVE-2023-35087.
14.Fixed lighttpd vulnerability, CVE-2023-35720.
15.Fixed several curl vulnerabilities including CVE-2023-28322, CVE-2023-28321, and CVE-2023-28319.
16.Fixed FFmpeg vulnerabilities, specifically CVE-2022-3964, CVE-2022-48434, and CVE-2022-3109.
17.Fixed openssl vulnerability, CVE-2023-0464.
18.Fixed ReadyMedia vulnerabilitym CVE-2020-28926.
19.Fixed UPnP vulnerability CVE-2020-12695.
20.Patched a command injection vulnerability to improve overall security.
21.Strengthened protection against SSH brute force attacks.
22.Fixed the cfg server vulnerability.
23.Fixed the vulnerability in the logmessage function.
24..Fixed CVE-2022-46871
25.Fixed Client DOM Stored XSS.

Please unzip the firmware file, and then verify the checksum.
SHA256: 152c72bd808cb03656c32d910cf5e2ffc1e80abefa3c494637240acc107599c7

This version of firmware is only applicable to ZenWiFi ET8 of HW Ver: 1.0, please check the product label before utilizing. You can check the hardware version from the product SN label or box label.

1. Fixed OpenSSL CVE-2022-0778
2. Fixed CVE-2018-1160, Thanks to Steven Sroba
3. Added more security measures to block malware.
4. Fixed Stored XSS vulnerability. Thanks to Milan Kyselica of IstroSec.
5. Fixed CVE-2021-34174, CVE-2022-23970, CVE-2022-23971, CVE-2022-23972, CVE-2022-23973, CVE-2022-25595, CVE-2022-25596, CVE-2022-25597, CVE-2022-26376
6. Improved system stability.
7. Fixed anomalous 802.11 frame issues.
Thanks to Kari Hulkko and Tuomo Untinen from The Synopsys Cybersecurity Research Center (CyRC). Issue was found by using Defensics Fuzz Testing Tool.
8. Added 3rd party DNS server list in WAN --> DNS to help users enhance the connection security.
9. Supported Safe Browsing in the router app to filter explicit content from search results. You can set it in the router app --> Devices or Family.


Please unzip the firmware file first then check the MD5 code.
MD5: e295c9ecd9862be4fb561ad7e907198a

This version of firmware is only applicable to ZenWiFi ET8 of HW Ver: 1.0, please check the product label before utilizing. You can check the hardware version from the product SN label or box label.

Security
- Fixed string format stacks vulnerability
- Fixed cross-site-scripting vulnerability
- Fixed informational vulnerability.
Thanks to Howard McGreehan.

-Fixed SQL injection vulnerability
-Fixed json file traversal vulnerability
-Fixed plc/port file traversal vulnerability
-Fixed stack overflow vulnerability
Thanks to HP of Cyber Kunlun Lab

-Fixed authenticated stored XSS vulnerability
Thanks to Luke Walker – SmartDCC

-Fixed LPD denial of service vulnerability
-Fixed cfgserver heap overflow vulnerability
-Fixed cfgserver denial of service vulnerability
Thanks to TianHe from BeFun Cyber Security Lab.

Added more ISP profile
Digi 1 - TM
Digi 2 - TIME
Digi 3 - Digi
Digi 4 - CTS
Digi 5 - ALLO
Digi 6 - SACOFA
Maxis - CTS
Maxis - SACOFA
Maxis - TNB/ALLO

Fixed AiMesh guest network issues.
Fixed DDNS issues where the WAN IP is IPv6
Fixed UI bugs in Administration --> feedback.
Fixed time zone error.
Improved the connection stability.

Please unzip the firmware file first then check the MD5 code.
MD5:43ba6c19098258cfa685f08ecf2a1e16

This version of firmware is only applicable to ZenWiFi ET8 of HW Ver: 1.0, please check the product label before utilizing. You can check the hardware version from the product SN label or box label.
Initial release

Please unzip the firmware file first then check the MD5 code.
MD5: f9156c1386dbcc5f83eb1d21f23d2383