I'm using Merlin firmware on an ASUS RT-AX86U Pro and haven't seen any mention from him concerning this vulnerability or when he might include a fix. I would've thought he would have at least made a statement about it. So, I thought I might go to the latest stock ASUS firmware which is supposed to include the fix. However, when I check the file on their website against the SHA-256 posted along with it, I don't get a match. https://www.asus.com/networking-iot...86u-pro/helpdesk_bios?model2Name=RT-AX86U-Pro I'm kinda feeling stuck. I can't use Merlin's if it doesn't have a fix and I can't use ASUS because their file doesn't match its hash. (edited to correct typos)
If you disable AiCloud (which you should, considering the large amount of vulnerabilities over the years), you’re fine.
I appreciate the feedback. I've had AiCloud disabled since I set up the router but I'd still feel better if I could update.
