CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-15101

An OS command injection vulnerability in the web management interface of certain ASUS router models allows remote authenticated administrators to execute arbitrary system commands via a crafted parameter. Refer to the 'Security Update for ASUS Router Firmware' section on the ASUS Security Advisory for more information.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 12.6%

CVSS Severity

CVSS v3 Score 8.8

References

https://www.asus.com/security-advisory/

Products affected by CVE-2025-15101

Asus » Asus Firmware » Version: 3.0.0.4.382.50470

cpe:2.3:o:asus:asus_firmware:3.0.0.4.382.50470

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-15101

Products

Pricing

Contact Us