The vulnerability, CVE-2024-3080, is a critical authentication bypass flaw that allows remote attackers to take control of the device without authentication.
ASUS advised customers to update their devices to the latest firmware versions available on its download portals or disable publicly accessible services if updates are not possible.
"If users cannot update Download Master, ASUS advises to ensure login and Wi-Fi passwords are secure, and use strong passwords that cannot be easily guessed or brute-forced by attackers."
[
Collection
]
[
|
...
]