As the title says…read more here
3 Likes
Asus has released a new firmware update addressing CVE-2023-39780, as well as the initial undocumented login bypass techniques. However, the update is more or less a preventive measure. Any router that has been exploited previously, upgrading the firmware is not going to remove the SSH backdoor. This is because the malicious configuration changes are stored in non-volatile memory and are not overwritten during standard firmware upgrades.
Wow. Not good at all. Hopefully Asus and other companies take care of their customers and learn from this.
3 Likes
