CVE Vulnerabilities

CVE-2026-13385

Improper Certificate Validation

Published: Jul 15, 2026 | Modified: Jul 15, 2026
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
RedHat/V2
RedHat/V3
Ubuntu
root.io logo minimus.io logo echo.ai logo

An Improper Validation of Integrity Check Value and Improper Certificate Validation in certain ASUS router models allows a remote man-in-the-middle(MITM) user to make the router download and execute arbitrary command via a spoofed server. Refer to the   Security Update for ASUS Router Firmware   section on the ASUS Security Advisory for more information.

Weakness

The product does not validate, or incorrectly validates, a certificate.

Potential Mitigations

References