Security Advisory

CVE-2025-15101

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2026-03-26 02:01:26

Last updated 2026-05-13 01:44:37

Assigner ASUS

State PUBLISHED

Description

An OS command injection vulnerability in the web management interface of certain ASUS router models allows remote authenticated administrators to execute arbitrary system commands via a crafted parameter. Refer to the Security Update for ASUS Router Firmware section on the ASUS Security Advisory for more information.

← Browse all CVEs View on cve.org ↗