ASUS
RT-AC68U Firmware version 3.0.0.4.
384.32738 (2018/08/15)
Security fixes.
- Fixed Reflected XSS vulnerability.
- Fixed CSRF vulnerability.
- Fixed command injection vulnerability.
- Fixed stack buffer overflow vulnerability.
ASUS
RT-AC68U Firmware version 3.0.0.4.
384.20942 (2018/05/21)
Security fixes.
- Fixed XSS vulnerability. Thanks to Yonghui Han of Fortinet's FortiGuard Labs.
- Fixed CVE-2018-8877, CVE-2018-8878, CVE-2018-8879
- Fixed plain text password vulnerability in lighttpd.
ASUS
RT-AC68U Firmware version 3.0.0.4.
384.20624 (2018/03/27)
Security fixed.
-Fixed information disclosure vulnerability. Thanks to Haitan Xiang and Fand Wang.
-Fixed CVE-2018-8826 remote code execution vulnerability. Thanks to Chris Wood.
-Fixed AiCloud 2.0 Reflected XSS Vulnerability. Thanks to Guy Arazi and Niv Levi contribution.
ASUS
RT-AC68U Firmware version 3.0.0.4.
384.20287 (2018/01/26)
Security fixed.
- Fixed Smart Sync Stored XSS vulnerabilities. Thanks fo Guy Arazi's contribution.
- Fixed CVE-2018-5721 Stack-based buffer overflow
ASUS
RT-AC68U Firmware version 3.0.0.4.
384.10007 (2018/01/02)
Security fixed.
- Fixed KRACK vulnerability
- Fixed XSS vulnerability. Thanks for Joaquim's contribution.
- Fixed LAN RCE vulnerability. An independent security researcher has reported this vulnerability to Beyond Security’s SecuriTeam Secure Disclosure program
- Fixed remote code execution vulnerability. Thanks to David Maciejak of Fortinet's FortiGuard Labs
ASUS
RT-AC68U Firmware version 3.0.0.4.
382.18547 (2017/11/10)
Security fixed.
- Fixed KRACK vulnerability
- Fixed CVE-2017-14491: DNS - 2 byte heap based overflow
- Fixed CVE-2017-14492: DHCP - heap based overflow
- Fixed CVE-2017-14493: DHCP - stack based overflow
- Fixed CVE-2017-14494: DHCP - info leak
- Fixed CVE-2017-14495: DNS - OOM DoS
- Fixed CVE-2017-14496: DNS - DoS Integer underflow
- Fixed CVE-2017-13704 : Bug collision
- Fixed predictable session tokens, logged user IP validation, Logged-in information disclosure (special thanks for Blazej Adamczyk contribution)
- Fixed web GUI authorization vulnerabilities.
- Fixed AiCloud XSS vulnerabilities
ASUS
RT-AC68U Firmware version 3.0.0.4.
380.7743 (2017/06/16)
Security fixed.
- Fixed CVE-2017-8828 (XSS vulnerability special for Yair Amit’s
https://www.linkedin.com/in/yairamit/ contribution)
- Fixed CVE-2017-5892 (JSONP Information Disclosure)
- Fixed CVE-2017-7494 (Samba remote code execution vulnerability)
- Improved brute-force protection for SSH, Telnet connection.
ASUS
RT-AC68U Firmware version 3.0.0.4.
380.7378 (2017/03/31)
Security fixed.
- Fixed CVE-2017-5891.
- Fixed CVE-2017-5892.
- Fixed CVE-2017-6547.
- Fixed CVE-2017-6549.
- Fixed CVE-2017-6548.
- Added log message for brute force attack.
ASUS
RT-AC68U Firmware version 3.0.0.4.
380.4164 (2016/12/13)
Security related.
- Updated OpenSSL library to 1.0.2j to fix security issues.
- Updated Dropbear SSH to 2016.74 to fixe security issues.
- Fixed a security vulnerability regarding XSS.
- Fixed a security vulnerability regarding CSRF.
- Added protection for Brute-force attack.
ASUS
RT-AC68U Firmware version 3.0.0.4.
380.3831 (2016/07/08)
Security Fixed.
- Fixed XSS issue in WDS page. Special thanks for Jamie's contribution.
- Fixed LPR buffer overflow issue. Special thanks for GeekPwn contribution.
- Remoted DHCP information disclosure.
ETC.