ASUS ZenWiFi XD5
BIOS & FIRMWARE
- Driver & Tools
- BIOS & FIRMWARE
Bug Fixes and Enhancements:
- NowTV profile has been added under new IPTV profiles.
- IPTV settings have been updated for better compatibility with Unifi Biz VoIP service.
- Fixed ipv6 network service filter not work.
- Resolved an issue that caused hostname errors in the DDNS service.
- Resolved OpenVPN Server TAP Mode Issue.
- Fixed the problem that the Aicloud app cannot add router on Android 9.
Security Fixes:
- Fixed several curl vulnerabilities including CVE-2021-27218, CVE-2021-27219, CVE-2023-28322, CVE-2023-28321, CVE-2023-28319.
- Fixed FFmpeg vulnerabilities, specifically CVE-2022-3964, CVE-2022-48434, and CVE-2022-3109.
- Corrected an OpenVPN vulnerability categorized as CWE-134.
- Strengthened protection against SSH brute force attacks.
- Updated OpenSSL to 1.1.1t for vulnerabilities.
Please unzip the firmware file, and then verify the checksum.
SHA256: 86a3fbdb9cf668a096a494fc2420f05ef62e13a319b2d333c8c4f0c7dfb965b0
Try more on ASUSWRT 2022 with new features at https://asus.click/ASUSWRT2022
1. Supported WireGuard VPN server and client.
2. Supported VPN fusion. It can easily achieve VPN connection to network devices like Smart TV, Game consoles and without installing the VPN client software.
3. Built-in Surfshark in VPN Fusion allows you to surf the internet anonymously and securely from anywhere by encrypting connections. Please refer to https://asus.click/SurfsharkVPN
4 Supported new devices connection notification.
5. Supported connection diagnostic on the ASUS router app.
6. Supported Instant Guard 2.0 which helps easily invite family or friends to join the VPN connection.
7. Upgraded parental control and added reward, new scheduler for flexible setting
8. DDNS transfer allows you to transfer your ASUS DDNS hostname from your original router to the new one. Please refer to https://asus.click/ASUSDDNS
Security updates:
-Enabled and supported ECDSA certificates for Let's Encrypt.
-Enhanced protection for credentials.
-Enhanced protection for OTA firmware updates.
-Fixed DoS vulnerabilities in firewall configuration pages. Thanks to Jinghe Gao's contribution.
-Fixed DoS vulerabilities in httpd. Thanks to Howard McGreehan.
-Fixed information disclosure vulnerability. Thanks to Junxu (Hillstone Network Security Research Institute) contribution.
-Fixed CVE-2023-28702 and CVE-2023-28703. Thanks to Xingyu Xu(@tmotfl) contribution.
-Fixed null pointer dereference vulnerabilities. Thanks to Chengfeng Ye, Prism Research Group - cse hkust contribution.
-Fixed the cfg server vulnerability. Thanks to Swing and Wang Duo from Chaitin Security Research Lab.
-Fixed the vulnerability in the logmessage function CVE-2023-35086/ CVE-2023-35087. Thanks to Swing and Wang Duo from Chaitin Security Research Lab C0ss4ck from Bytedance Wuheng Lab, Feixincheng from X1cT34m.
Please unzip the firmware file, and then verify the checksum.
SHA26: dcfd69fcd7039b68f7a613c55d8722f89527a6697fb2fb5609c50363d870a76a
Initial release
Please unzip the firmware file first then check the MD5 code.
MD5: 7111af031bcd1eb056532da429842150