An improper input insertion vulnerability in AiCloud on certain router models may lead to arbitrary command execution. Refer to the '01/02/2025 ASUS Router AiCloud vulnerability' section on the ASUS Security Advisory for more information.
https://securityaffairs.com/185109/iot/new-asus-firmware-patches-critical-aicloud-vulnerability.html
https://www.securityweek.com/over-50000-asus-routers-hacked-in-operation-wrthug/
https://www.theregister.com/2025/11/19/thousands_more_asus_routers_pwned/
https://www.infosecurity-magazine.com/news/chinal-operation-wrthug-thousands/
https://thehackernews.com/2025/11/wrthug-exploits-six-asus-wrt-flaws-to.html