334 CVEs

3 in CISA KEV

asus Vulnerabilities

CVE security advisories and vulnerability history for asus.

334

Total CVEs

Published

3

In CISA KEV

Exploited in the wild

62

Public exploits

With known exploit

7.0

Avg CVSS

2005–2026

Overview

asus has 334 published CVE records since 2005, of which 3 are in CISA's Known Exploited Vulnerabilities catalog and 62 have a known public exploit. The average CVSS base score across scored CVEs is 7.0.

This page aggregates every publicly disclosed vulnerability (CVE) affecting asus products, with severity breakdowns, the most-affected products, the most common weakness types, and the latest disclosures.

Severity and exploitation

How the CVSS severity of asus's CVEs breaks down, plus how many are exploited in the wild or have public exploit code.

Critical20

High75

Medium72

Low2

165 additional CVEs have no CVSS severity score.

In CISA’s Known Exploited Vulnerabilities catalog

3

3 of asus's CVEs are confirmed exploited in the wild.

Public exploits

62

62 of asus's CVEs have a known public exploit available.

Most affected products

The asus products with the most published CVEs.

RT-AC86U25 CVEs
rt-ac68u22 CVEs
rt-ac86u firmware19 CVEs
asmb8-ikvm firmware19 CVEs
BMC firmware for ASMB8-iKVM18 CVEs
asmb8-ikvm18 CVEs
BMC firmware for Z10PE-D16 WS18 CVEs
BMC firmware for Z10PR-D1618 CVEs

Common weakness types

The CWE weakness categories most often found in asus CVEs. Follow any weakness for its full explanation.

CNAs that assign these CVEs

The CVE Numbering Authorities that publish asus CVE records.

Disclosure activity by year

How many asus CVEs were published each year.

2019

47

2020

15

2021

53

2022

35

2023

37

2024

29

2025

31

2026

12

Latest asus CVEs

The most recently disclosed vulnerabilities affecting asus.

High vulnerability · 2026-05-29
CWE-732
High · CVSS 7.3
EPSS 0.0%2026-05-29
High vulnerability · 2026-05-29
CWE-732
High · CVSS 7.3
EPSS 0.0%2026-05-29
Medium vulnerability · 2026-05-08
CWE-125
Medium · CVSS 6.8
EPSS 0.0%2026-05-08
Low vulnerability · 2026-05-08
CWE-782
Low · CVSS 2.0
EPSS 0.0%2026-05-08
Medium vulnerability · 2026-04-16
CWE-494
Medium · CVSS 5.4
EPSS 0.0%2026-04-16
Medium vulnerability · 2026-04-16
CWE-367
Medium · CVSS 5.4
EPSS 0.0%2026-04-16
High vulnerability · 2026-03-26
CWE-78
High · CVSS 8.6
EPSS 0.0%2026-03-26
Medium vulnerability · 2026-03-12
CWE-125
Medium · CVSS 6.9
EPSS 0.0%2026-03-12
Medium vulnerability · 2026-03-12
CWE-494
Medium · CVSS 5.4
EPSS 0.0%2026-03-12
Medium vulnerability · 2026-03-12
CWE-732
Medium · CVSS 6.8
EPSS 0.0%2026-03-12
High vulnerability · 2026-02-02
CWE-862
High · CVSS 8.5
EPSS 0.0%2026-02-02
High vulnerability · 2026-01-06
CWE-426
High · CVSS 8.5
EPSS 0.0%2026-01-06

Track new asus CVEs as they are disclosed and get AI-written analysis and remediation guidance.

Monitor asus CVEs

Other vendors

Browse vulnerabilities for other tracked vendors.

Synology347 CVEs openbsd346 CVEs Liferay341 CVEs sourceware339 CVEs zyxel334 CVEs HCL Software332 CVEs cybozu330 CVEs SolarWinds321 CVEs

Browse all vendors

Frequently asked questions

Common questions about asus vulnerabilities.

How many CVEs does asus have?

asus has 334 published CVE records since 2005, including 43 in the last two years.

How many asus CVEs are in CISA KEV?

Yes — 3 of asus's CVEs are listed in CISA's Known Exploited Vulnerabilities catalog, confirmed exploited in the wild and carrying a CISA remediation deadline.

Which asus products have the most CVEs?

The asus products with the most published CVEs are RT-AC86U, rt-ac68u, rt-ac86u firmware, asmb8-ikvm firmware, BMC firmware for ASMB8-iKVM.

What are the most common weakness types in asus CVEs?

asus's CVEs most often map to these CWE weakness types: CWE-120 (Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')), CWE-78 (Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')), CWE-22 (Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')), CWE-79 (Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')).

Are there public exploits for asus vulnerabilities?

Yes — 62 of asus's CVEs have a known public exploit.

How many critical asus vulnerabilities are there?

asus has 20 critical and 75 high-severity CVEs.

What is the average severity of asus CVEs?

The average CVSS base score across asus's scored CVEs is 7.0.

References

Vulnerability data is sourced from the CVE Program; severity, KEV, and exploit signals are aggregated by RadicalNotion.AI.

Track asus vulnerabilities

Monitor new asus vulnerabilities as they are disclosed, with AI-written analysis and remediation guidance.

Start free See pricing