← ExploitWatch
HomeExploited Vulnerabilities

CVE-2023-39780 — Actively Exploited: RT-AX55 Routers (ASUS)

ASUS RT-AX55 devices contain an OS command injection vulnerability that could allow a remote, authenticated attacker to execute arbitrary commands. As represented by CVE-2023-41346.

CVE IDCVE-2023-39780
VendorASUS
ProductRT-AX55 Routers
Vulnerability nameASUS RT-AX55 Routers OS Command Injection Vulnerability
Date added2025-06-02
Remediation due2025-06-23
Known ransomware useUnknown
Required actionApply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
DescriptionASUS RT-AX55 devices contain an OS command injection vulnerability that could allow a remote, authenticated attacker to execute arbitrary commands. As represented by CVE-2023-41346.
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →