Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
rt vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2020-15499
An issue exists on ASUS RT-AC1900P routers prior to 3.0.0.4.385_20253. They allow XSS via spoofed Release Notes on the Firmware Upgrade page.
Asus Rt-ac1900p Firmware
NA
CVE-2015-4679
Multiple cross-site scripting (XSS) vulnerabilities in the web interface in Airties RT-210 allow remote malicious users to inject arbitrary web script or HTML via the (1) ddns_domainame or (2) ddns_account parameter to ddns.stm.
Airties Rt-210 Firmware
9.1
CVSSv3
CVE-2021-37315
Incorrect Access Control issue discoverd in Cloud Disk in ASUS RT-AC68U router firmware version prior to 3.0.0.4.386.41634 allows remote malicious users to write arbitrary files via improper sanitation on the source for COPY and MOVE operations.
Asus Rt-ac68u Firmware
5.3
CVSSv3
CVE-2023-31195
ASUS Router RT-AX3000 Firmware versions before 3.0.0.4.388.23403 uses sensitive cookies without 'Secure' attribute. When an attacker is in a position to be able to mount a man-in-the-middle attack, and a user is tricked to log into the affected device through an unencry...
Asus Rt-ax3000 Firmware
8.8
CVSSv3
CVE-2023-41349
ASUS router RT-AX88U has a vulnerability of using externally controllable format strings within its Advanced Open VPN function. An authenticated remote attacker can exploit the exported OpenVPN configuration to execute an externally-controlled format string attack, resulting in ...
Asus Rt-ax88u Firmware
5.9
CVSSv3
CVE-2020-15498
An issue exists on ASUS RT-AC1900P routers prior to 3.0.0.4.385_20253. The router accepts an arbitrary server certificate for a firmware update. The culprit is the --no-check-certificate option passed to wget tool used to download firmware update files.
Asus Rt-ac1900p Firmware
7.5
CVSSv3
CVE-2021-3229
Denial of service in ASUSWRT ASUS RT-AX3000 firmware versions 3.0.0.4.384_10177 and previous versions versions allows an malicious user to disrupt the use of device setup services via continuous login error.
Asus Rt-ax3000 Firmware
7.5
CVSSv3
CVE-2023-34358
ASUS RT-AX88U's httpd is subject to an unauthenticated DoS condition. A remote attacker can send a specially crafted request to a device which contains a specific user agent, causing the httpd binary to crash during a string comparison performed within web.c, resulting in a ...
Asus Rt-ax88u Firmware
7.5
CVSSv3
CVE-2023-34359
ASUS RT-AX88U's httpd is subject to an unauthenticated DoS condition. A remote attacker can send a specially crafted request to the device which causes the httpd binary to crash within the "do_json_decode()" function of ej.c, resulting in a DoS condition.
Asus Rt-ax88u Firmware
5.4
CVSSv3
CVE-2023-34360
A stored cross-site scripting (XSS) issue exists within the Custom User Icons functionality of ASUS RT-AX88U running firmware versions 3.0.0.4.388.23110 and prior. After a remote attacker logging in device with regular user privilege, the remote attacker can perform a Stored Cros...
Asus Rt-ax88u Firmware
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27802
template injection
CVE-2024-0044
code injection
CVE-2024-35474
CVE-2024-27857
CVE-2024-23251
CVE-2024-23692
physical
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »