Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
asus asus firmware vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2021-3166
An issue exists on ASUS DSL-N14U-B1 1.1.2.3_805 devices. An attacker can upload arbitrary file content as a firmware update when the filename Settings_DSL-N14U-B1.trx is used. Once this file is loaded, shutdown measures on a wide range of services are triggered as if it were a re...
Asus Dsl-n14u B1 Firmware 1.1.2.3 805
10
CVSSv2
CVE-2020-35219
The ASUS DSL-N17U modem with firmware 1.1.0.2 allows malicious users to access the admin interface by changing the admin password without authentication via a POST request to Advanced_System_Content.asp with the uiViewTools_username=admin&uiViewTools_Password= and uiViewTools...
Asus Dsl-n17u Firmware 1.1.0.2
4.3
CVSSv2
CVE-2020-15499
An issue exists on ASUS RT-AC1900P routers prior to 3.0.0.4.385_20253. They allow XSS via spoofed Release Notes on the Firmware Upgrade page.
Asus Rt-ac1900p Firmware
4.3
CVSSv2
CVE-2020-15498
An issue exists on ASUS RT-AC1900P routers prior to 3.0.0.4.385_20253. The router accepts an arbitrary server certificate for a firmware update. The culprit is the --no-check-certificate option passed to wget tool used to download firmware update files.
Asus Rt-ac1900p Firmware
5
CVSSv2
CVE-2018-8877
Information disclosure in Asuswrt-Merlin firmware for ASUS devices older than 384.4 and ASUS firmware prior to 3.0.0.4.382.50470 for devices allows remote malicious users to acquire information on internal network IP address ranges by reading the new_lan_ip variable on the error_...
Asus Asus Firmware
Asuswrt-merlin Asuswrt-merlin
5
CVSSv2
CVE-2018-8878
Information disclosure in Asuswrt-Merlin firmware for ASUS devices older than 384.4 and ASUS firmware prior to 3.0.0.4.382.50470 for devices allows remote malicious users to acquire information on internal network devices' hostnames and MAC addresses by reading the custom_id...
Asuswrt-merlin Asuswrt-merlin
Asus Asus Firmware
7.5
CVSSv2
CVE-2018-8879
Stack-based buffer overflow in Asuswrt-Merlin firmware for ASUS devices older than 384.4 and ASUS firmware prior to 3.0.0.4.382.50470 for devices allows remote malicious users to execute arbitrary code by providing a long string to the blocking.asp page via a GET or POST request....
Asus Rt-ac66u Firmware
7.8
CVSSv2
CVE-2019-11060
The web api server on Port 8080 of ASUS HG100 firmware up to 1.05.12, which is vulnerable to Slowloris HTTP Denial of Service: an attacker can cause a Denial of Service (DoS) by sending headers very slowly to keep HTTP or HTTPS connections and associated resources alive for a lon...
Asus Hg100 Firmware
4.8
CVSSv2
CVE-2019-11061
A broken access control vulnerability in HG100 firmware versions up to 4.00.06 allows an attacker in the same local area network to control IoT devices that connect with itself via http://[target]/smarthome/devicecontrol without any authentication. CVSS 3.0 base score 10 (Confide...
Asus Hg100 Firmware
1 Github repository
7.8
CVSSv2
CVE-2018-17020
ASUS GT-AC5300 devices with firmware up to and including 3.0.0.4.384_32738 allow remote malicious users to cause a denial of service via a single "GET / HTTP/1.1\r\n" line.
Asus Gt-ac5300 Firmware
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4761
command injection
CVE-2024-3676
IDOR
CVE-2024-30039
CVE-2024-32113
CVE-2024-30049
CVE-2024-4776
SQL injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »