Router

This hub aggregates every CVE we track for Router, a product in the hardware firmware space. Use it to gauge the current risk picture and drill into individual advisories.

Severity distribution

Monthly trend

The 15 most recently published vulnerabilities affecting Router.

• CVE-2025-15101An OS command injection vulnerability in the web management interface of certain ASUS router models allows remote authenticated administrators to execute arbitrary system commands via a crafted par...8.8Mar 26, 2026
• CVE-2025-59366An authentication-bypass vulnerability exists in AiCloud. This vulnerability can be triggered by an unintended side effect of the Samba functionality, potentially leading to allow execution of spec...9.8Nov 25, 2025
• CVE-2025-64347Apollo Router Improperly Enforces Renamed Access Control Directives7.5Nov 7, 2025
• CVE-2025-64173Apollo Router Core: Access Control Bypass on Polymorphic Types7.5Nov 6, 2025
• CVE-2025-2492An improper authentication control vulnerability exists in AiCloud. This vulnerability can be triggered by a crafted request, potentially leading to unauthorized execution of functions. Refer to ...9.4Apr 18, 2025
• CVE-2025-32380Apollo Router Query Validation Vulnerable to Excessive Resource Consumption via Named Fragment Processing7.5Apr 9, 2025
• CVE-2025-32034Apollo Router Query Planner Vulnerable to Excessive Resource Consumption via Named Fragment Expansion7.5Apr 7, 2025
• CVE-2025-32033Apollo Router Operation Limits Vulnerable to Bypass via Integer Overflow7.5Apr 7, 2025
• CVE-2025-32032Apollo Router Query Planner Vulnerable to Excessive Resource Consumption via Optimization Bypass7.5Apr 7, 2025
• CVE-2024-13062An unintended entry point vulnerability has been identified in certain router models, which may allow for arbitrary command execution. Refer to the ' 01/02/2025 ASUS Router AiCloud vulnerability' ...7.2Jan 2, 2025
• CVE-2024-12912An improper input insertion vulnerability in AiCloud on certain router models may lead to arbitrary command execution. Refer to the '01/02/2025 ASUS Router AiCloud vulnerability' section on the ASU...7.2Jan 2, 2025
• CVE-2024-43783Apollo Router Coprocessors may cause Denial-of-Service when handling request bodies7.5Aug 27, 2024
• CVE-2024-32971Defect in query plan cache may cause incorrect operations to be executed in Apollo Router9.0May 2, 2024
• CVE-2024-28101Apollo Router's Compressed Payloads do not respect HTTP Payload Limits7.5Mar 6, 2024
• CVE-2023-7211Uniway Router Administrative Web Interface reliance on ip address for authentication5.6Jan 7, 2024