ASUS Wrt RT-AC68U Firmware (identical for RT-AC66U_B1 and RT-AC1900U). Note: January 2023 the RT-AC68U_V4 is declared EOL, the classic models are declared EOL March 2024. Firmware version 3.0.0.4.386.51685 2024/04/15 - Fixed command injection vulnerability. - Fixed the ARP poisoning vulnerability. Thanks to the contribution of Xin'an Zhou. - Fixed code execution in custom OVPN. Thanks to the contrubution of Jacob Baines. - Fixed the injection vulnerability in AiCloud. - Fixed stack buffer overflow in lighttpd. Special thanks to Viktor Edstrom. - Fixed CVE-2023-35720. - Fixed the code execution vulnerability in AiCloud. Thanks to the contribution of chumen77. - Fixed the XSS and Self-reflected HTML injection vulnerability. Thanks to the contrubution of Redfox Cyber Security. *Please be advised that due to a security upgrade in AiMesh, we strongly recommend against downgrading to previous firmware versions, as this may lead to connection issues. Should you encounter any difficulties, resetting the AiMesh router to its default settings and re-establishing the mesh connection can resolve the problem. Firmware version 3.0.0.4.386.51668 2023/11/30 1. Resolved an issue causing excessive log generation due to bwdpi issue. 2. Fixed a potential issue causing higher CPU utilization. Firmware version 3.0.0.4.386.51665 2023/05/11 Bug fixes and functionality modifications: -Resolved the issue with login and password changes. -Fixed the issue where Traffic Analyzer sometimes couldn't record data. Security updates: -Enabled and supported ECDSA certificates for Let's Encrypt. -Enhanced protection for credentials. -Enhanced protection for OTA firmware updates. -Fixed DoS vulnerabilities in firewall configuration pages. Thanks to Jinghe Gao's contribution. -Fixed DoS vulerabilities in httpd. Thanks to Howard McGreehan. -Fixed information disclosure vulnerability. Thanks to Junxu (Hillstone Network Security Research Institute) contribution. -Fixed CVE-2023-28702 and CVE-2023-28703. Thanks to Xingyu Xu(@tmotfl) contribution. -Fixed null pointer dereference vulnerabilities. Thanks to Chengfeng Ye, Prism Research Group - cse hkust contribution. -Fixed the cfg server vulnerability. Thanks to Swing and Wang Duo from Chaitin Security Research Lab. -Fixed the vulnerability in the logmessage function. Thanks to Swing and Wang Duo from Chaitin Security Research Lab C0ss4ck from Bytedance Wuheng Lab, Feixincheng from X1cT34m. Firmware version 3.0.0.4.386.51255 2023/03/02 1.Fixed HTTP response splitting vulnerability. 2.Fixed Samba related vulerabilities. 3.Fixed cfg server security issues. 4.Fixed Open redirect vulnerability. 5.Fixed token authentication security issues. 6.Fixed security issues on the status page. 7.Fixed XSS vulnerability. 8.Fixed CVE-2022-26376 9.Fixed CVE-2018-1160. 10.Fixed IPv6-related bugs. 11.Added a new login URL http://www.asusrouter.com to fixed the login issues. 12.Optimize the AiMesh web interface. 13.Fixed network map UI bugs. 14.Fixed bugs related to Wi-Fi calling. 15.Supported web history record exported. 16.Fixed IPSec VPN server compatibility with Windows 10 VPN client. 17.Improved AiMesh connection stability. 18.Fixed IPTV issues. Firmware version 3.0.0.4.386.49703 2022/07/20 1. Fixed CVE-2018-1160, CVE-2022-26376. 2. Improved system stability. 3. Added 3rd party DNS server list in WAN --> DNS to help users enhance the connection security. Firmware version 3.0.0.4.386.48262 2022/03/25 1. Fixed OpenSSL CVE-2022-0778 2. Added more security measures to block malware. 3. Fixed Stored XSS vulnerability. Thanks to Milan Kyselica of IstroSec. 4. Fixed CVE-2022-23970, CVE-2022-23971, CVE-2022-23972, CVE-2022-23973, CVE-2022-CVE-2022-25595, CVE-2022-25596, CVE-2022-25596, 5. Added 3rd party DNS server list in WAN --> DNS to help users enhance the connection security. Firmware version 3.0.0.4.386.46065 2022/01/27 Security - Fixed string format stacks vulnerability. - Fixed cross-site-scripting vulnerability. - Fixed informational vulnerability. Thanks to Howard McGreehan. -Fixed SQL injection vulnerability. -Fixed json file traversal vulnerability. -Fixed plc/port file traversal vulnerability. -Fixed stack overflow vulnerability. Thanks to HP of Cyber Kunlun Lab. -Fixed authenticated stored XSS vulnerability. Thanks to Luke Walker – SmartDCC. -Fixed LPD denial of service vulnerability. -Fixed cfgserver heap overflow vulnerability. -Fixed cfgserver denial of service vulnerability. Thanks to TianHe from BeFun Cyber Security Lab. Added more ISP profile Digi 1 - TM Digi 2 - TIME Digi 3 - Digi Digi 4 - CTS Digi 5 - ALLO Digi 6 - SACOFA Maxis - CTS Maxis - SACOFA Maxis - TNB/ALLO Fixed AiMesh guest network issues. Fixed DDNS issues where the WAN IP is IPv6. Fixed UI bugs in Administration --> feedback. Fixed time zone error. Firmware version 3.0.0.4.386.45987 2021/12/16 Fixed XSS vulnerability. Fixed SQL injection vulnerability. Fixed PLC path traversal vulnerability. Fixed Stack overflow vulnerability. Thanks to HP of Cyber Kunlun Lab. Firmware version 3.0.0.4.386.45934 2021/11/16 1. Fixed Let's encrypt related bugs. 2. Fixed httpd vulnerability. 3. Fixed stack overflow vulnerability. 4. Fixed DoS vulnerability. 5. Fixed AiMesh web page multi-language issues. 6. Fixed Stored XSS vulnerability. 7. Fixed CVE-2021-41435, CVE-2021-41436. Thanks to Efstratios Chatzoglou, University of the Aegean. Georgios Kambourakis, European Commission at the European Joint Research Centre. Constantinos Kolias, University of Idaho. 8. Fixed Stack overflow vulnerability. Thanks to Jixing Wang (@chamd5) contribution. 9. Fixed information disclosure vulnerability .Thanks to CataLpa from DBappSecurity Co.,Ltd Hatlab and 360 Alpha Lab contribution. Firmware version 3.0.0.4.386.43137 2021/10/14 - Fixed GUI bug. Firmware version 3.0.0.4.386.43129 2021/05/21 1.Fixed the FragAttack vulnerability. 2.Fixed DoS vulnerability. Thanks for Tsinghua University NISL's contribution. 3.Improved system stability. 4.Fixed GUI bugs. 5.Security Fixed: CVE-2020-25681, CVE-2020-25682, CVE-2020-25683, CVE-2020-25687, CVE-2020-25684, CVE-2020-25685, CVE-2020-25686 Note: The file size doubled because it contains two firmware images: one for the classic RT-AC68U, and one for the forecoming RT-AC68U_V4. Firmware version 9.0.0.4.386.41994 (Beta Version) 2021/02/01 Security Fixed: Fixed CVE-2020-25681, CVE-2020-25682, CVE-2020-25683, CVE-2020-25687, CVE-2020-25684, CVE-2020-25685, CVE-2020-25686 Please be noted this is a quick fix beta version for DNSmasq vulnerabilities. Refer to "Method 2: Update Manually" in https://www.asus.com/support/FAQ/1008000 to update this firmware. Firmware version 3.0.0.4.386.41634 2021/01/18 1. Fixed Let’s Encrypt not working properly. 2. Added IPTV supports for specific region. 3. Fixed parental control issues. This firmware add more security protection for configuration. If you want to manually downgrade to previously version, please reset the router to default after downgraded. Firmware version 3.0.0.4.386.40558 2020/11/05 New Feature 1. AiMesh 2.0 - System optimization: one click in AiMesh to optimize the topology. - System Ethernet backhaul mode, all nodes will only connect by ethernet, all bands will be released for wireless clients. - System factory default and reboot. - Client device reconnect, make the device to offline and online again. - Client device binding to specific AP. - Guest WiFi on all Mesh nodes (all node need to upgrade to 3.0.0.4.386 firmware). - Access nodes USB application. Connection priority and Ethernet backhaul mode introduction https://www.asus.com/support/FAQ/1044184 How to setup ASUS AiMesh or ZenWiFi Mesh Ethernet backhaul under different conditions https://www.asus.com/support/FAQ/1044151/ 2. New Family interface in ASUS router App. ASUS Router App for iOS must greater or equal to iOS v1.0.0.5.75 Android version greater or equal to v1.0.0.5.74 3. The unit of the WiFi time scheduler goes to 1 minute. 4. 2.4 and 5G on the network map could be configured in the same tab. 5. Captcha for login can be disabled in administration -> system. 6. Printer server port can be disabled on the USB app page. 7. Clients which connect to the guest network can be viewed in the network map -->view list --> interface Firmware version 3.0.0.4.385.20852 2020/09/29 - Fix the problem of misblocking some websites. CPU spikes are reported. Possibly a China only version, withdrawn 2020/09/30. Firmware version 3.0.0.4.385.20633 2020/08/14 - Fixed RCE vulnerability. Firmware version 3.0.0.4.385.20632 2020/07/28 - Fixed multi language issues. Firmware version 3.0.0.4.385.20630 2020/06/30 Security update - Fixed CVE-2020-12695 (CallStranger) - Fixed Reflected XSS vulnerability. - Fixed Directory traversal vulnerability. - Fixed CVE-2017-15653. The update server transport layer security was upgraded and the old protocol was removed. If your router firmware version is lower than 3.0.0.4.385.20253, please refer to the "Update Manually" section in https://www.asus.com/support/FAQ/1008000 to update the firmware. Firmware version 3.0.0.4.385.20585 2020/06/19 - Fixed Let's encrypt certification renew bugs. - Improved web history page loading speed. - Fixed OpenVPN related bugs. Firmware version 3.0.0.4.385.20490 2020/05/06 Note: probably the captcha login feature is new in this version. - Improved connection stability. - Optimized CPU utilization. - Fixed some UI bugs. - Fixed login bugs. - Support router certificate export. After import the certificate to the computer you will not see the warning message when login with https. Please refer to https://www.asus.com/us/support/FAQ/1034294/ Firmware version 3.0.0.4.385.20433 2020/04/14 1. Update Adaptive QoS categories: Help you to prioritize the mission-critical applications. Those people who work-from-home & learn-from-home will greatly benefit from this new feature with optimized streaming experiences. New Supported Categories & Apps: - Video conferencing, including Microsoft Teams®, ZOOM®, Skype®, Google Hangouts®, BlueJeans® - Online learning, including Khan academy®, Udemy®, Coursera®, TED®, VIPKiD®, 51Talk®, XDF®, Xueersi® - Streaming, including YouTube®, Netflix®, HBO NOW®, Amazon Prime Video®, Disney+®, ESPN®, MLB.com®, iQIY® - Indoor training, including Zwift®, Peloton®, Onelap® Stay tuned and more apps are coming to the list soon! 2. Support Mobile Game Mode. - One-click prioritizing your mobile device to the highest and ensure you the best mobile gaming experiences. - Install/Update ASUS Router App (Android supports later than 1.0.0.5.44; iOS supports later than 1.0.0.5.41). Firmware version 3.0.0.4.385.20253 Note: CPU spikes and WiFi outages are reported. 2020/03/10 - Fixed CVE-2019-15126 (Kr00k) vulnerability. Firmware version 3.0.0.4.385.20252 2020/02/13 1. Fixed the firmware update problem in some special conditions. 2. Fixed UI bugs. Firmware version 3.0.0.4.385.10000 2019/11/26 - Fixed firmware update issues. Firmware version 3.0.0.4.384.81351 2019/11/13 - Fixed a DDoS vulnerability. - Fixed Let's Encrypt related bugs. - Fixed folder creating bugs in Samba. - Fixed dual wan failover bugs while the primary wan type is L2TP. Firmware version 3.0.0.4.384.81049 2019/09/05 Security fix - Fixed a DDoS vulnerability. Thanks for Altin Thartori's contribution. Bugfix - Fixed EU 5GHz SSID disappear problems in EU model. - Fixed Network map client list issues. - Fixed block internet access problem when clients connected to AiMesh node. - Fixed Samba server compatibility issue. - Fixed OpenVPN related bugs. - Fixed schedule reboot bugs. - Improved AiMesh compatibility. - Improved system stability. Firmware version 3.0.0.4.384.81039 Note: slow GUI and httpd CPU load peaks, this version is withdrawn 27-08-2019. 2019/08/23 Security fix: - Fixed a DDoS vulnerability. Thanks for Altin Thartori's contribution. Bug fixes and improvement: - Fixed Samba server compatibility issue. - Fixed OpenVPN related bugs. - Fixed schedule reboot bugs. - Improved AiMesh compatibility. - Improved system stability. Firmware version 3.0.0.4.384.45717 2019/05/13 - Fixed DDoS vulnerability. - Fixed AiCloud vulnerability. Thanks for Matt Cundari's contribution. - Fixed command injection vulnerability. Thanks for S1mba Lu's contribution. - Fixed buffer overflow vulnerability. Thanks for Javier Aguinaga's contribution. Firmware version 3.0.0.4.384.45713 2019/04/11 Bug Fix - Fixed browser no response problem when enabled Traffic analyzer. - Fixed VLAN bug for Movistar. - Fixed the problem which causes lots of SQUASHFS error in system log. Firmware version 3.0.0.4.384.45708 2019/03/29 Security Fix - Fixed CVE-2018-20334. - Fixed CVE-2018-20336. - Fixed null pointer issue. Thanks for CodeBreaker of STARLabs’ contribution. - Fixed AiCloud buffer overflow vulnerability. Thanks for Resecurity International's contribution. Bug Fix - Fixed AiMesh LAN IP issue when router using IPv6 WAN. - Fixed AIMesh connection issues. - Fixed Network Map related issues. - Fixed Download Master icon disappear issue. - Fixed LAN PC cannot find router name in My Network Places when enabling Samba service. - Fixed LAN LED not blinking problem. Firmware version 3.0.0.4.384.45149 2018/12/06 AiMesh - Improved AiMesh stability. - Lyra, Lyra Mini, and Lyra Trio can be added as AiMesh node into RT-AC68 series model network. Please refer to https://www.asus.com/support/FAQ/1038071 for more detail. Security - Fixed CVE-2018-14710, CVE-2018-14711, CVE-2018-14712, CVE-2018-14713, CVE-2018-14714. Thanks for Rick Ramgattie's contribution. - Fixed AiCloud/ Samba account vulnerability. Thanks for Matthew Cundari's contribution. - Fixed DoS vulnerability. Thanks for Ruikai Liu's contribution. - Fixed CVE-2018-17020, CVE-2018-17021, CVE-2018-17022. - Fixed stored XSS vulnerability. Thanks for Duda Przemyslaw's contribution. - Updated OpenSSL library. Bug fixes and improvement - Improved wireless stability. - Modified “Dual Wan” user interface. - Modified “Port Forwarding” user interface. - Modified “Restore” user interface. - Fixed GUI bugs on user feedback page. - Fixed “Adaptive QoS” bugs. Firmware version 3.0.0.4.384.32799 2018/09/19 Fixed WIFI stability issue. Firmware version 3.0.0.4.384.32738 2018/08/15 AiMesh new features: - Supported creating mesh system with new router, BlueCave. - Added Roaming block list in Advanced Settings --> Wireless. You can add devices into block list and this device will not be roamed between AiMesh nodes. - Supported ethernet onboarding. User can use ethernet cable. You can use ethernet cable to connect AiMesh router LAN port and AiMesh node WAN port first and run the adding node process to build the mesh system. Security fixes: - Fixed Reflected XSS vulnerability. - Fixed CSRF vulnerability. - Fixed command injection vulnerability. - Fixed stack buffer overflow vulnerability. Thanks for Rick Ramgattie contribution. Fixed USB hard drive over 2TB compatibility issues. Fixed Samba/FTP folder permission issues. Added USB3.0/2.0 mode switch setting in Administration --> System --> USB Settings. Firmware version 3.0.0.4.384.21140 2018/07/10 - [DDNS] Modified the procedure of DDNS service register under dual wan load balance mode. - [WAN] Modified detect logic of internet connection. - [AiMesh] Fixed AiMesh onboarding unsuccessfully once smart connect is enabled. - [AiMesh] Modified AiMesh nodes notification procedure. - [GUI] Fixed AiProtection GUI bugs. - [GUI] Updated OpenVPN server FAQ URL. Firmware version 3.0.0.4.384.21045 2018/06/01 - Modified the EULA for DDNS, AiProtection, Adaptive QoS, Traffic Analyzer, Web history, Feedback. - Add Privacy page in Advanced settings>Administration. - Fixed IPv6 bugs. - Modified USB 3.0 related strings. - Increased port forwarding rules limit from 32 to 64. - Added more protection mechanism for OpenVPN account. - Fixed AiMesh bandwidth and extension channel sync issue. Firmware version 3.0.0.4.384.20942 2018/05/22 - Improved system stability. - Improved AiMesh performance. - Fixed XSS vulnerability. Thanks to Yonghui Han of Fortinet's FortiGuard Labs. - Fixed CVE-2018-8877, CVE-2018-8878, CVE-2018-8879. - Fixed plain text password vulnerability in lighttpd. - Modified Quick Internet Setup wizard process. - Main SSID and guest network can hide independently. - Fixed OpenVPN client authentication issues. - Administrator can asisgn specific WAN interface to register DDNS in dual wan load balance mode. - Fixed OpenVPN client DNS related issues. Firmware version 3.0.0.4.384.20648 2018/04/03 - Fixed abnormal message in system log. - Fixed Time zone/DST bugs. - Enhanced AiMesh self-healing ability. - Fixed AiMesh mac filter bugs. Firmware version 3.0.0.4.384.20624 2018/03/26 Suport multi-langue(UTF-8) network name* Supported Let's encrypt to help get free Certificate Authority (CA). To enable this feature, the router needs to obtain public IP from ISP. Security fixed -Fixed information disclosure vulnerability. Thanks to Haitan Xiang and Fand Wang. -Fixed CVE-2018-8826 remote code execution vulnerability. Thanks to Chris Wood. -Fixed AiCloud 2.0 Reflected XSS Vulnerability. Thanks to Guy Arazi and Niv Levi contribution. Thanks to Guy Arazi for following vulnerabilities. -AiCloud 2.0 Stored XSS Share link manager. -AiCloud 2.0 Reflected XSS - "share a link" -Download Master HTTP service DoS vulnerability. -Download Master Reflected XSS Main login. Bug fixed -Improved AiMesh stability. -Improved system stability. -Fixed DST related bugs. -Fixed client list related bugs. -Fixed traffic analyzer UI bugs. * Windows XP and Windows 7 do not support UTF-8 format SSID. These two OS may see gibberish if using multi-language SSID. Firmware version 3.0.0.4.384.20308 2018/02/01 Bug fix - Fixed GUI error on firmware update page. The progress bar may always appear on firmware upgrade page after installed 3.0.0.4.384.20287. If your router had this issue, you can manually reboot the router to solve this issue and enter the firmware upgrade page to install the latest firmware. Firmware version 3.0.0.4.384.20287 2018/01/26 Security fixed - Fixed Smart Sync Stored XSS vulnerabilities. Thanks fo Guy Arazi's contribution. - Fixed CVE-2018-5721 Stack-based buffer overflow. Bug fixed - Fixed CTF related issues. - Fixed client icon modification issue when client name includes special characters. - Fixed error for new firmware available notification. - Fixed AiMesh node shows offline in the GUI even it still connect to AiMesh router. - Fixed AiMesh disappeared problem in some specific model name. - Fixed LAN speed issue when clients connect to AiMesh node with the network cable. - Fixed PPTP VPN server connection error. - Fixed repeater/ media bridge side survry issues. - Fixed AiMesh issues for special model name. Firmware version 3.0.0.4.384.10007 2018/01/02 New feature AiMesh: an innovative new router feature that connects multiple ASUS routers to create a whole-home WiFi network. Refer to https://www.asus.com/aimesh/ for more detail. Security fixed - Fixed XSS vulnerability. Thanks for Joaquim's contribution. - Fixed LAN RCE vulnerability. An independent security researcher has reported this vulnerability to Beyond Security’s SecuriTeam Secure Disclosure program. - Fixed remote code execution vulnerability. Thanks to David Maciejak of Fortinet's FortiGuard Labs. Bug fixed - Fixed NAT throughput drop issue. - Fixed network map abnormal responsed time issues. - Fixed client list issues. - Fixed AiCloud smart sync issue. Firmware version 3.0.0.4.382.18881 2017/11/30 Release note: - Performance Improvement. Firmware version 3.0.0.4.382.18547 2017/11/10 Security fixed - Fixed KRACK vulnerability. - Fixed CVE-2017-14491: DNS - 2 byte heap based overflow. - Fixed CVE-2017-14492: DHCP - heap based overflow. - Fixed CVE-2017-14493: DHCP - stack based overflow. - Fixed CVE-2017-14494: DHCP - info leak. - Fixed CVE-2017-14495: DNS - OOM DoS. - Fixed CVE-2017-14496: DNS - DoS Integer underflow. - Fixed CVE-2017-13704 : Bug collision. - Fixed predictable session tokens, logged user IP validation, Logged-in information disclosure (special thanks for Blazej Adamczyk contribution). - Fixed web GUI authorization vulnerabilities. - Fixed AiCloud XSS vulnerabilities. New features - HDD Hibernation. - URL filter black/white list. - Bandwidth limiter on guest network. - URL filter support https website. Firmware version 3.0.0.4.380.7743 2017/06/16 Security fixed - Fixed CVE-2017-8828 (XSS vulnerability special for Yair Amit’s https://www.linkedin.com/in/yairamit/ contribution). - Fixed CVE-2017-5892 (JSONP Information Disclosure). - Fixed CVE-2017-7494 (Samba remote code execution vulnerability). - Improved brute-force protection for SSH, Telnet connection. Bug fixed - Fixed URL filter, keyword filter, network filter time related issue. - Fixed USB Modem/ Tethering UI issue. Firmware version 3.0.0.4.380.7378 2017/03/31 Security fixed - Fixed CVE-2017-5891. - Fixed CVE-2017-5892. - Fixed CVE-2017-6547. - Fixed CVE-2017-6549. - Fixed CVE-2017-6548. - Added log message for brute force attack. Bug fixed - Fixed bandwidth limiter bugs. - Fixed UI issue when using Chrome 56. - Fixed smart sync bugs. Firmware version 3.0.0.4.380.7266 2017/02/14 Bug fixed - Fixed Android phone tethering mode detecting issue in quick internet setup process. - Fixed PPPoE related issue. - Fixed client rename issue in network map. - Fixed network tool issues. - Fixed wake on lan issues. Modification - Added automatic standby mode for CE Ecodesign directive. Version 3.0.0.4.380.4164 2016/12/23 ASUS RT-AC68U Firmware version 3.0.0.4.380.4164 (Facebook Wi-Fi special version) Facebook Wi-Fi special version, turn your business into a Wi-Fi hotspot, read more: https://www.facebook.com/business/facebook-wifi * Please note this service is provided by Facebook, please check the facebook Wi-Fi website to make sure the support list and status. * This service will not work at regions without Facebook services. Security related - Updated OpenSSL library to 1.0.2j to fix security issues. - Updated Dropbear SSH to 2016.74 to fixe security issues. - Fixed a security vulnerability regarding XSS. - Fixed a security vulnerability regarding CSRF. - Added protection for Brute-force attack. Bug fixed - Fixed Chrome, Edge and IE compatibility issues. - Fixed quick internet setting wizard compatibility issues. - Fixed NAT issue caused by UPnP media server. - Fixed dual wan issues in PPPoE or PPTP or L2TP + DHCP environment. - Fixed AiCloud related issues. - Fixed AP mode interoperability issues Modified - Updated NAT Acceleration setting help message. - Supported Google DDNS support . - Modified the Quick Internet Setting wizard behavior to enhance compatibility. - Enabled smart sync under AP/Media Bridge/ Repeater mode. - Supported new 3G/LTE USB dongle Docomo L-03D. Version 3.0.0.4.380.4164 2016/12/13 [Important] If your firmware version is 3.0.0.4.380.2717 and used Facebook Wi-Fi, please DO NOT update to this version. We will release another special version for Facebook Wi-Fi users soon. Security related - Updated OpenSSL library to 1.0.2j to fix security issues. - Updated Dropbear SSH to 2016.74 to fixe security issues. - Fixed a security vulnerability regarding XSS. - Fixed a security vulnerability regarding CSRF. - Added protection for Brute-force attack. Bug fixed - Fixed Chrome, Edge and IE compatibility issues. - Fixed quick internet setting wizard compatibility issues. - Fixed NAT issue caused by UPnP media server. - Fixed dual wan issues in PPPoE or PPTP or L2TP + DHCP environment. - Fixed AiCloud related issues. - Fixed AP mode interoperability issues Modified - Updated NAT Acceleration setting help message. - Supported Google DDNS support . - Modified the Quick Internet Setting wizard behavior to enhance compatibility. - Enabled smart sync under AP/Media Bridge/ Repeater mode. - Supported new 3G/LTE USB dongle Docomo L-03D. Version 3.0.0.4.380.4118 2016/11/08 openvpn client - [bugfix] fixed wrong config after upload profile - Issue occurs in Extra HMAC authorization Bi-directional case. www - [Update] Fine tune timezone list for Istanbul Version 3.0.0.4.380.3831 2016/09/08 Security Fixed - Fixed XSS issue in WDS page. Special thanks for Jamie's contribution. - Fixed LPR buffer overflow issue. Special thanks for GeekPwn contribution. - Remoted DHCP information disclosure. Bug Fixed - Fixed smart sync GUI issue. - Fixed reboot issue when using repeater mode. Modifications - Added bluetooth coexistence option in wireless--> professional. Bluetooth audio transmission(A2DP) near router would interfere 2.4GHz Wi-Fi, enabling bluetooth coexistence can reduce the speed drop. Known issue: Enabling this option would also reduce 2.4G maximum throughput a little, so the default value is disable. - Modified failback behavior when only turn on dual wan failover. - Modified the firmware upgrade page. After upgraded to this version, user can see the newer firmware release note in the GUI and unnecessary to go to support site. Note: Wireless drivers: 6.37.14.126 (r561982) Version 3.0.0.4.380.3264 2016/05/12 ASUS has been dedicated to cooperate with third party developers to come up with more innovative features. To comply with regulatory amendments, we have modified firmware verification rule to ensure better firmware quality. This version is not compatible with all previously released ASUS firmware and uncertified third party firmware. Security Fixed - Fixed Samba Badlock CVE-2016-2110 (Man in the middle attacks possible with NTLMSSP) - Fixed Samba Badlock CVE-2016-2111 (NETLOGON Spoofing Vulnerability) - ASUS firmware did not enable Samba LDAP, and not affected by CVE-2016-2112 (LDAP client and server don't enforce integrity) issue. - The Samba version in ASUS firmware was not affected by CVE-2016-2118 (SAMR and LSA man in the middle attacks possible) - The Samba version in ASUS firmware was not affected by CVE-2015-5370 (Multiple errors in DCE-RPC code) - Fixed command injection issue. Thanks for Chris' contribution. - Fixed XSS issue. Thanks for Chris' contribution. Bug Fixed - Fixed Windows Radius server compatibility issues. - Fixed 5G performance issue when using bandwidth monitor. - Fixed bandwidth monitor incorrect number problem. - Fixed setup wizard redirect issue when router automatically changed LAN IP in IP conflict case. - Modified setup wizard process when router detected DHCP and PPPoE at the same time. - Fixed bandwidth limiter bug when there are multiple clients in rule list. - Fixed NTP automatically sync issue when router rebooted - Fixed Safari slow response issue. - Enhance AiCloud dynamic stream port mechanism (please also keep AiCloud app up to date) - Fixed AiCloud share link related issues. Version 3.0.0.4.380.2717 2016/05/03 Facebook Wi-Fi special version, turn your business into a Wi-Fi hotspot, read more: https://www.facebook.com/business/facebook-wifi * Please note this service is provided by Facebook, please check the facebook Wi-Fi website to make sure the support list and status. * This service will not work at regions without Facebook services. Beta Version 9.0.0.4.380.2695 2016/03/28 Security Related - Modified the access rights of account mode and share mode to asusware.platform path when lighttpd server is enabled. (Très Acton at BAE Systems Applied Intelligence)) - Modified the access rights to specific port of UPnP server. (Thanks to Acton) - Updated lighttpd server version to 1.4.39 (Thanks to Tommi) - Restriced access from wan method to enhance security. (Thanks for David) - Changed SSH and Telnet default access interface. New Features - Supported auto dynamic port changing of UPnP server when ports conflict. - Supported more ASUS Router App new features - Added traffic analyzer Bug fixed - Fixed the GUI issue for reboot scheduler - Fixed httpd/ Telnetd/ SSH restart issue after LAN address changed - Fixed 2.4G connection issue when disabled NAT acceleration Version 3.0.0.4.380.1842 2016/01/28 Bug fixes - Fixed Multicast issue when WAN is PPPoE/ PPTP/ L2TP - Fixed IPTV GUI issue - Fixed two guest networks had same mac address problem. - Fixed view list in network map cannot be closed. - Fixed network map device icon issue - Fixed client cannot get new IP when changed router IP and subnet mask. - Fixed wrong notification when using quick internet setup wizard in static IP environment. - Fixed wrong notification when client was blocked by Time scheduling. - Fixed ASUS Router App related issues. - Fixed DNS response error issue. - Fixed abnormal LED blinking issue when enabled IPTV. - Fixed client list name cannot be changed issue. Version 3.0.0.4.380.1031 2015/12/11 - Fixed too many repeat information in system log. - Fixed Traffic analyzer issue UI issue when changing the data. - Fixed Adaptive QoS bandwidth setting issue. - Fixed low samba transfer throughput issue when enable bandwidth limiter. - Fixed web history related issue. - Fixed abnormal bandwidth increasing in bandwidth monitor. - Fixed VPN client UI issue when using Firefox. - Fixed wireless channel issue when set 2.4G channel in 12 or 13 (only for EU region) - Fixed dual wan ping time watch dog issue which might cause .false fail over to secondary wan. - Fixed Bandwidth monitor and Web history UI issue which was caused by "<" or ">" in SSID. - Fixed vulnerability of the cross site scripting Version 3.0.0.4.378.9313 2015/11/06 Security Improvement - Fixed User-Agent buffer overflow. Special thanks for Hubert's contribution. - Fixed null ptr dereference in https issue. Special thanks for Anthony's contribution - Fixed buffer overflow issues. - Modified brute-force protection mechanism in router login page. - Fixed malicious site block related issues. New Feature Support ASUS router app which make it very easy to monitor and manage route status and client devices and more. Search ASUS Router in google play or go the following URL https://play.google.com/store/apps/details?id=com.asus.aihome iOS app coming soon. Bug Fixes - Fixed httpd crash issue. Special thanks for Merlin's contribution. - Fixed blank web page when clients number over 100. - Fixed Network map client list related issues. - Fixed firmware login issue when connect to router by OpenVPN. - Add reboot scheduler in Administration --> System - Fixed warning page showing issue when only enable the HTTPS authentication. - Fixed the slow UI issue when enabled Bandwidth limiter. - Fixed repeated mDNSNetMonitor message in system log when there is a Apple TV in LAN. - Fixed IPv6 firewall UI issue. - Fixed UI issue when enable monopoly mode in printer setting. 3rd party app supported Added Cloudcheck router software agent. Cloudcheck agent enables intelligent wifi diagnostics that provides complete visibility into home network performance and offers actionable recommendations for improvements. To use this new functionality, 1) Download Cloudcheck app from Apple or Google App stores, 2) Make sure ASUS router is connected to Internet, 3) Launch the Cloudcheck app, go to “Smartifi” option in the main menu. The app will automatically detect the router and activate the service after getting your consent Version 3.0.0.4.378.9135 2015/09/30 Security Fixes - Updated TrendMicro security engine. - Fixed CVE-2015-6949 buffer overflow issue, special thanks for Elvis Collado at DVLabs. - Fixed Host and User-Agent parameter buffer overflows, special thanks for Elvis Collado at Praetorian - Fixed Web server URL handler buffer overflow, special thanks for Tim Yeh and Kenney Lu at TrendMicro. - Enhanced router login password and wireless password(WPA2) strength check method to against brute-force attack. - Reject administrator to set too easy to guess login and wireless password to avoid brute-force attack. New Features - Time scheduling, Web & App filter, Wireless MAC filter client drop down menu can show offline devices. Modifications - Added Meo and Movistar ISP profile. - Adjusted Guest network mac filter maximum client number to 16 - Allow paste password on login page to fulfil some password management softwares requirement. - Show current control channel while value is auto. - Bandwidth limiter can accept decimal point. - Unnecessary to reboot router after set allow only spcified IP address to enter GUI. - Adaptive QoS can now be enabled without assigned upload/ download bandwidth. Fixes - Fixed setup wizard IE11 compatibility issue. - Fixed Adaptive QoS game mode GUI issue. - Fixed Traffic Analyzer GUI issue. - Fixed OpenVPN connection status display error. Version 3.0.0.4.378.8258 2015/09/17 Security fixes - Updated OpenSSL library to 1.0.2d - Fixed CSRF and XSS vulnerability. New features - [AiCloud] Show image EXIF info on image player - [AiCloud] Auto rotate image on image player. - [AiCloud] Files can be moved and copied. - [AiCloud] Images can be uploaded to Picasa or Twitter. - [AiCloud] Share link can be posted on Twitter, Plurk, weibo and QQ in AiCloud. - [AiCloud] AiCloud can be used in AP/ media bridge mode. - Added 3G/4G USB modem APN auto detection feature. In most cases, firmware can automatically find the ISP profile and establish link when 3G/4G dongle inserted to router. - Added Android phone in USB modem/ USB Tethering --> Select USB device. - Bandwidth Limiter in Adaptive QoS --> QoS. Let administrator easily limit specific client's upload/ download bandwidth - Independent mac filter for main wireless network and guest network. Administrator can set white list for main wireless network to only allow trust client connect to main wireless network and share network to guest with guest network - Modified the network map client status. When click the client icon, administrator can bind IP, change host name, change icon, block internet access or set time scheduling. - Added client list view button on network map and help administrator easily monitor all client connection status. - Added the question feedback in Administration -> Feedback - Added new DDNS provider www.oray.com Modifications - Changed warning page style. - Changed Cloud sync Dropbox URL encoding from UTF8 to BASE64. - Added stateful server in IPv6 - Improved media server response time when new file added. - Adjusted Adaptive QoS UI and easier to set top priority for gaming, media streaming or web surfing. Bug fixes - Fixed MAC clone abnormal issue - Fixed cloud sync issues between router and ASUS webstorage. - Fixed share link related issue to Android devices. - Fixed web redirection issue when WAN IP conflicted. - Fixed compatibility issues for IE8 - Fixed GUI related issues - Fixed login issue when router’s IP is 10.x.x.x - Fixed parental control-> time scheduling related issue. - Fixed adaptive QoS device priority label dragging issue. - Fixed network tool related issues. - Fixed USB HDD issue when using time machine. - Fixed network map UI issue when selected French. - Fixed the saving issue in OpenVPN server -> content modification of keys & certification. - Fixed dropdown UI offset issue at Parental control. Beta Version 3.0.0.4.378.4850 2015/04/07 - Add DDNS support method and tutorials on web interface when DDNS is not able to use in some areas. Version 3.0.0.4.378.4585 2015/03/12 Bug fixes - Fixed DPI engine initiation issue. - Updated AiCloud related string. - Updated QIS string. Security related - Upgrade OpenSSL library to 1.0.0q - Fixed CVE-201301813 - Fixed the XSS vulnerability on page Main_Analysis_Content.asp AiProtection fixes - Fixed router reboot issue when disabled AiProtection - Fixed kernel panic when wan reconnected - Modified web history strings - Updated signature to 1.030 - Optimize memory usage Other - Added Movistar profile in IPTV setting page Version 3.0.0.4.378.3873 2015/01/12 -Fixed infosvr security issue. -Fixed Cross-site request forgery security issue Version 3.0.0.4.378.3813 2015/01/09 [Important] This version included AiProtection and AdaptiveQoS. After firmware updated, please press the reset button more than five seconds to reset the router to avoid some compatibility issues. New features 1. Added AiProtection with triple-strength total network security, plus robust parental controls and privacy protection 2. Added Adaptive QoS. Applications and tasks can be prioritized easily using drag-and-drop presets for gaming, media streaming, VoIP, web browsing and file transfers. Security related 1. Fixed CSRF issue. 2. Upgraded Openssl library to 1.0.0.o 3. Removed FTP link in Network map Bug fixes 1. Fixed dual wan fails over mode switch back issue. 2. Fixed VPN server related issues. 3. Fixed static IP setting issue in AP mode. 4. Fixed download master cannot be uninstalled in FAT16 and FAT32 format. 5. Fixed Wake on LAN UI issue. 6. Fixed Firefox compatibility issue. 7. Fixed IPv6 related issues. 8. Fixed IGMP related issues. 9. Fixed media server related issues. 10. Fixed UI issue when setting the repeater mode or AP mode in QIS. 3G/LTE 1. Supported Huawei E161, E3131, E171 2. Supported ZTE MF880, MF823, MF821D 3. Supported Royaltek Q110 Version 3.0.0.4.376.3715 2014/12/30 - Fixed CSRF issue. - For JP only Version 3.0.0.4.376.3626 2014/11/14 [Important] Please press the reset button more than five seconds to reset the router after firmware updated - Fixed the EU/JP/China 5GHz disappear issue which is caused by 3.0.0.4.376.3602 - Increased the firmware partition size in preparation for further new features. - Added Airtime fairness in Wireless?Professional Network map new features: - Click the lock icon in client profile to assign fixed IP for client. - Added number on client icon to show how many clients connect to repeater and AP under router - Added the DHCP and static IP identification. Known issue. If the IP is fixed in client side, Network map would show DHCP. Security related - Upgraded OpenSSL library to 1.0.0n - Added SSH daemon in administration -> system Bug fixes 3G/LTE - Fixed HUAWEI E180, E261, E1750, E1780, EC122, EC1260, EC1261, EC150, EC167, ET128, compatibility issue. - Fixed ZTE MU251, T A356, AC580, AC590 compatibility issue. - Fixed BandLuxe C170 compatibility issue. - Fixed HTC M8 USB tethering compatibility issue. Others - Fixed NAT loopback issue. - Fixed samba issue when plugging two USB drives. - Fixed the NTP sync issue in AP mode. - Fixed user interface issues for IPTV, Media bridge mode, VPN server.