New fw v 3.0.0.4.388_23756-gc732440 for the DSL-AX82U-AX5400.
Security:
Fixed Client DOM Stored XSS.
Fixed CVE-2022-46871.
Fixed httpd command injection vulnerabilities.
Fixed httpd DoS vulnerabilities.
Fixed httpd integer overflow vulnerability.
Fixed httpd Null Pointer Dereference vulnerabilities.
Fixed lighttpd command injection vulnerability.
Fixed not secure cookies when using https.
Fixed cfg server security issues.
Fixed Stored Cross Site Scripting.
Updated OpenSSL to version 1.1.1t for CVE vulnerabilities.
Fixed XSS attack via USB EXT3 foldername.
Fixed Stored Cross Site Scripting. Thanks to Howard McGreehan.
Fixed XSS attack via malformed hostname in DHCP request
Fixed MiniDLNA CVE-2020-28926.
Fixed OpenVPN CWE 134 issue.
Fixed ffmpeg CVE-2022-3964 / CVE-2022-48434 / CVE-2022-3109.
Fixed command injection issues.
Fixed cURL CVE-2023-28322, CVE-2023-28319.
Updated libxml2 to version 2.10.4.
Fixed Brute Force Protection for SSH and telnet server.
Fixed AiCloud ZDI-CAN-16078.
Fixed the vulnerability in the logmessage function.
Feature:
Add Surfshark in VPN Fusion allows you to surf the internet anonymously and securely from anywhere by encrypting connections. Please refer to https://asus.click/SurfsharkVPN.
Fixed AiMesh related bugs.
Fixed minor GUI bugs.
Fixed AiCloud ftpclient login issue.
Fixed ipv6 network service filter issue.
Enhanced Dual-WAN fail-over/fail-back. Fixed switching Operation Mode.
Fixed resource leak issues.
Updated OpenVPN server for the compatibility with OpenVPN 2.6 client.
Fixed bandwidth limiter rule not to restart in mesh node.
Fixed possible system crash issue with setting WireGuard VPN Fusion.
Security:
Fixed Client DOM Stored XSS.
Fixed CVE-2022-46871.
Fixed httpd command injection vulnerabilities.
Fixed httpd DoS vulnerabilities.
Fixed httpd integer overflow vulnerability.
Fixed httpd Null Pointer Dereference vulnerabilities.
Fixed lighttpd command injection vulnerability.
Fixed not secure cookies when using https.
Fixed cfg server security issues.
Fixed Stored Cross Site Scripting.
Updated OpenSSL to version 1.1.1t for CVE vulnerabilities.
Fixed XSS attack via USB EXT3 foldername.
Fixed Stored Cross Site Scripting. Thanks to Howard McGreehan.
Fixed XSS attack via malformed hostname in DHCP request
Fixed MiniDLNA CVE-2020-28926.
Fixed OpenVPN CWE 134 issue.
Fixed ffmpeg CVE-2022-3964 / CVE-2022-48434 / CVE-2022-3109.
Fixed command injection issues.
Fixed cURL CVE-2023-28322, CVE-2023-28319.
Updated libxml2 to version 2.10.4.
Fixed Brute Force Protection for SSH and telnet server.
Fixed AiCloud ZDI-CAN-16078.
Fixed the vulnerability in the logmessage function.
Feature:
Add Surfshark in VPN Fusion allows you to surf the internet anonymously and securely from anywhere by encrypting connections. Please refer to https://asus.click/SurfsharkVPN.
Fixed AiMesh related bugs.
Fixed minor GUI bugs.
Fixed AiCloud ftpclient login issue.
Fixed ipv6 network service filter issue.
Enhanced Dual-WAN fail-over/fail-back. Fixed switching Operation Mode.
Fixed resource leak issues.
Updated OpenVPN server for the compatibility with OpenVPN 2.6 client.
Fixed bandwidth limiter rule not to restart in mesh node.
Fixed possible system crash issue with setting WireGuard VPN Fusion.
Last edited:
