CVE-2024-12912

CVSS 3.1 Score 7.2 of 10 (high)

Details

Published Jan 2, 2025

CWE ID 77

CWE ID 20

Summary

CVE-2024-12912 is a newly disclosed vulnerability affecting certain AiCloud implementations on ASUS routers. This input insertion flaw enables an attacker to inject arbitrary commands, potentially resulting in unauthorized system access and execution of malicious code. Users are strongly advised to update their routers as soon as a patch becomes available to mitigate this risk. Further details about the specific routers and attack vectors can be found in the ASUS Security Advisory's '01/02/2025 ASUS Router AiCloud vulnerability' section.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/14PftV
https://www.cve.org/CVERecord?id=CVE-2024-12912
https://nvd.nist.gov/vuln/detail/CVE-2024-12912

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

DRAT V2: Updated DRAT Emerges in TAG-140’s Arsenal

Threats to the 2025 NATO Summit

Artificial Eyes: Generative AI in China’s Military Intelligence

Know What Matters

For Customers

For Partners

CVE-2024-12912

CVSS 3.1 Score 7.2 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations