Nixpkgs security tracker

Permalink CVE-2025-15101

created 3 weeks, 2 days ago

A Cross-Site Request Forgery (CSRF) vulnerability has been identified in …

A Cross-Site Request Forgery (CSRF) vulnerability has been identified in the Web management interface of certain ASUS router models. This vulnerability potentially allows actions to be performed with the existing privileges of an authenticated user on the affected device, including the ability to execute system commands through unintended mechanisms. Refer to the 'Security Update for ASUS Router Firmware' section on the ASUS Security Advisory for more information.

References

https://www.asus.com/security-advisory/ vendor-advisory

Affected products

Router

==3.0.0.6_102

Matching in nixpkgs

pkgs.router

Configurable, high-performance routing runtime for Apollo Federation

nixos-unstable 1.56.0
- nixpkgs-unstable 1.56.0
- nixos-unstable-small 1.56.0
nixos-25.11 1.56.0
- nixos-25.11-small 1.56.0
- nixpkgs-25.11-darwin 1.56.0

pkgs.kube-router

All-in-one router, firewall and service proxy for Kubernetes

nixos-unstable 2.7.1
- nixpkgs-unstable 2.7.1
- nixos-unstable-small 2.7.1
nixos-25.11 2.6.2
- nixos-25.11-small 2.6.2
- nixpkgs-25.11-darwin 2.6.2

pkgs.linux-router

Set Linux as router / Wifi hotspot / proxy in one command

nixos-unstable 0.8.1
- nixpkgs-unstable 0.8.1
- nixos-unstable-small 0.8.1
nixos-25.11 0.8.1
- nixos-25.11-small 0.8.1
- nixpkgs-25.11-darwin 0.8.1

pkgs.routersploit

Exploitation Framework for Embedded Devices

nixos-unstable 3.4.7
- nixpkgs-unstable 3.4.7
- nixos-unstable-small 3.4.7
nixos-25.11 3.4.7
- nixos-25.11-small 3.4.7
- nixpkgs-25.11-darwin 3.4.7

pkgs.invidious-router

Go application that routes requests to different Invidious instances based on their health status and (optional) response time

nixos-unstable 1.2
- nixpkgs-unstable 1.2
- nixos-unstable-small 1.2
nixos-25.11 1.2
- nixos-25.11-small 1.2
- nixpkgs-25.11-darwin 1.2

pkgs.claude-code-router

Tool to route Claude Code requests to different models and customize any request

nixos-unstable 2.0.0
- nixpkgs-unstable 2.0.0
- nixos-unstable-small 2.0.0
nixos-25.11 1.0.64
- nixos-25.11-small 1.0.64
- nixpkgs-25.11-darwin 1.0.64

pkgs.upnp-router-control

Access some parameters of the router and manage port forwarding

nixos-unstable 0.3.5
- nixpkgs-unstable 0.3.5
- nixos-unstable-small 0.3.5
nixos-25.11 0.3.5
- nixos-25.11-small 0.3.5
- nixpkgs-25.11-darwin 0.3.5

pkgs.linux-router-without-wifi

Set Linux as router / Wifi hotspot / proxy in one command

nixos-unstable 0.8.1
- nixpkgs-unstable 0.8.1
- nixos-unstable-small 0.8.1
nixos-25.11 0.8.1
- nixos-25.11-small 0.8.1
- nixpkgs-25.11-darwin 0.8.1

pkgs.python312Packages.asusrouter

API wrapper for communication with ASUSWRT-powered routers using HTTP protocol

nixos-25.11 1.21.0
- nixos-25.11-small 1.21.0
- nixpkgs-25.11-darwin 1.21.0

pkgs.python313Packages.asusrouter

API wrapper for communication with ASUSWRT-powered routers using HTTP protocol

nixos-unstable 1.21.3
- nixpkgs-unstable 1.21.3
- nixos-unstable-small 1.21.3
nixos-25.11 1.21.0
- nixos-25.11-small 1.21.0
- nixpkgs-25.11-darwin 1.21.0

pkgs.python314Packages.asusrouter

API wrapper for communication with ASUSWRT-powered routers using HTTP protocol

nixos-unstable 1.21.3
- nixpkgs-unstable 1.21.3
- nixos-unstable-small 1.21.3

pkgs.terraform-providers.routeros

None

nixos-unstable 1.99.1
- nixpkgs-unstable 1.99.1
- nixos-unstable-small 1.99.1
nixos-25.11 1.92.1
- nixos-25.11-small 1.92.1
- nixpkgs-25.11-darwin 1.92.1

pkgs.haskellPackages.gemini-router

A simple Happstack-style Gemini router

nixos-unstable 0.1.2.0
- nixpkgs-unstable 0.1.2.0
- nixos-unstable-small 0.1.2.0
nixos-25.11 0.1.2.0
- nixos-25.11-small 0.1.2.0
- nixpkgs-25.11-darwin 0.1.2.0

pkgs.open-music-kontrollers.router

Atom/Audio/CV router LV2 plugin bundle

nixos-unstable 2021-04-13
- nixpkgs-unstable 2021-04-13
- nixos-unstable-small 2021-04-13
nixos-25.11 2021-04-13
- nixos-25.11-small 2021-04-13
- nixpkgs-25.11-darwin 2021-04-13