Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
asus rt-ax56u firmware vulnerabilities and exploits
(subscribe to this query)
7.2
CVSSv3
CVE-2023-39238
It is identified a format string vulnerability in ASUS RT-AX56U V2. This vulnerability is caused by lacking validation for a specific value within its set_iperf3_svr.cgi module. A remote attacker with administrator privilege can exploit this vulnerability to perform remote arbit...
Asus Rt-ax55 Firmware 3.0.0.4.386 50460
Asus Rt-ax56u V2 Firmware 3.0.0.4.386 50460
Asus Rt-ac86u Firmware 3.0.0.4 386 51529
7.2
CVSSv3
CVE-2023-39239
It is identified a format string vulnerability in ASUS RT-AX56U V2’s General function API. This vulnerability is caused by lacking validation for a specific value within its apply.cgi module. A remote attacker with administrator privilege can exploit this vulnerability to ...
Asus Rt-ax55 Firmware 3.0.0.4.386 50460
Asus Rt-ax56u V2 Firmware 3.0.0.4.386 50460
Asus Rt-ac86u Firmware 3.0.0.4 386 51529
7.2
CVSSv3
CVE-2023-39240
It is identified a format string vulnerability in ASUS RT-AX56U V2’s iperf client function API. This vulnerability is caused by lacking validation for a specific value within its set_iperf3_cli.cgi module. A remote attacker with administrator privilege can exploit this vul...
Asus Rt-ax55 Firmware 3.0.0.4.386 50460
Asus Rt-ax56u V2 Firmware 3.0.0.4.386 50460
Asus Rt-ac86u Firmware 3.0.0.4 386 51529
9.8
CVSSv3
CVE-2023-35087
It is identified a format string vulnerability in ASUS RT-AX56U V2 & RT-AC86U. This vulnerability is caused by lacking validation for a specific value when calling cm_processChangedConfigMsg in ccm_processREQ_CHANGED_CONFIG function in AiMesh system. An unauthenticated remot...
Asus Rt-ac86u Firmware 3.0.0.4 386 51529
Asus Rt-ax56u V2 Firmware 3.0.0.4.386 50460
7.2
CVSSv3
CVE-2023-35086
It is identified a format string vulnerability in ASUS RT-AX56U V2 & RT-AC86U. This vulnerability is caused by directly using input as a format string when calling syslog in logmessage_normal function, in the do_detwan_cgi module of httpd. A remote attacker with administrato...
Asus Rt-ac86u Firmware 3.0.0.4 386 51529
Asus Rt-ax56u V2 Firmware 3.0.0.4.386 50460
1 Github repository
8.8
CVSSv3
CVE-2021-40556
A stack overflow vulnerability exists in the httpd service in ASUS RT-AX56U Router Version 3.0.0.4.386.44266. This vulnerability is caused by the strcat function called by "caupload" input handle function allowing the user to enter 0xFFFF bytes into the stack. This vuln...
Asus Rt-ax56u Firmware 3.0.0.4.386.44266
9.8
CVSSv3
CVE-2022-26376
A memory corruption vulnerability exists in the httpd unescape functionality of Asuswrt before 3.0.0.4.386_48706 and Asuswrt-Merlin New Gen before 386.7.. A specially-crafted HTTP request can lead to memory corruption. An attacker can send a network request to trigger this vulner...
Asus Asuswrt
Asuswrt-merlin New Gen
Asus Xt8 Firmware
Asus Tuf-ax3000 V2 Firmware
Asus Xd4 Firmware
Asus Et12 Firmware
Asus Gt-ax6000 Firmware
Asus Xt12 Firmware
Asus Rt-ax58u Firmware
Asus Xt9 Firmware
Asus Xd6 Firmware
Asus Gt-ax11000 Pro Firmware
Asus Gt-axe16000 Firmware
Asus Rt-ax86u Firmware
Asus Rt-ax68u Firmware
Asus Rt-ax82u Firmware
Asus Rt-ax56u Firmware
Asus Rt-ax55 Firmware
Asus Gt-ax11000 Firmware
9
CVSSv3
CVE-2021-43702
ASUS RT-A88U 3.0.0.4.386_45898 is vulnerable to Cross Site Scripting (XSS). The ASUS router admin panel does not sanitize the WiFI logs correctly, if an attacker was able to change the SSID of the router with a custom payload, they could achieve stored XSS on the device.
Asus Zenwifi Xd4s Firmware 3.0.0.4.386.46061
Asus Zenwifi Xt9 Firmware 3.0.0.4.386.46061
Asus Zenwifi Xd5 Firmware 3.0.0.4.386.46061
Asus Zenwifi Pro Et12 Firmware 3.0.0.4.386.46061
Asus Zenwifi Pro Xt12 Firmware 3.0.0.4.386.46061
Asus Zenwifi Ax Hybrid Firmware 3.0.0.4.386.46061
Asus Zenwifi Et8 Firmware 3.0.0.4.386.46061
Asus Zenwifi Xd6 Firmware 3.0.0.4.386.46061
Asus Zenwifi Ac Mini Firmware 3.0.0.4.386.46061
Asus Zenwifi Ax Mini Firmware 3.0.0.4.386.46061
Asus Zenwifi Ax Firmware 3.0.0.4.386.46061
Asus Zenwifi Ac Firmware 3.0.0.4.386.46061
Asus Rt-ac66u B1 Firmware 3.0.0.4.386.46061
Asus Rt-ax88u Firmware 3.0.0.4.386.46061
Asus Rt-ax82u Firmware 3.0.0.4.386.46061
Asus Rt-ax89x Firmware 3.0.0.4.386.46061
Asus Rt-ax92u Firmware 3.0.0.4.386.46061
Asus Rt-ax86u Firmware 3.0.0.4.386.46061
Asus Rt-ax68u Firmware 3.0.0.4.386.46061
Asus Rt-ax3000 Firmware 3.0.0.4.386.46061
Asus Rt-ax58u Firmware 3.0.0.4.386.46061
Asus Rt-ax55 Firmware 3.0.0.4.386.46061
8.1
CVSSv3
CVE-2022-23970
ASUS RT-AX56U’s update_json function has a path traversal vulnerability due to insufficient filtering for special characters in the URL parameter. An unauthenticated LAN attacker can overwrite a system file by uploading another file with the same file name, which results in...
Asus Rt-ax56u Firmware 3.0.0.4.386.45898
8.1
CVSSv3
CVE-2022-23971
ASUS RT-AX56U’s update_PLC/PORT file has a path traversal vulnerability due to insufficient filtering for special characters in the URL parameter. An unauthenticated LAN attacker can overwrite a system file by uploading another PLC/PORT file with the same file name, which r...
Asus Rt-ax56u Firmware 3.0.0.4.386.45898
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
TCP
CVE-2024-4577
CVE-2024-2695
CVE-2024-31870
injection
CVE-2024-3813
arbitrary code
CVE-2024-27801
CVE-2024-30120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »