5
ASUS warns router customers: Patch now, or block all inbound requests
(nakedsecurity.sophos.com)
Annoyingly for ASUS customers, perhaps, two of the now-patched vulnerabilities have been around waiting to be patched for a long time.
Wow one of the CVE numbers is from DEC 2018.
Took them 5 years to fix a critical vulnerability.
Really shows their concern for security.