Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
rt vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv2
CVE-2013-3610
qis/QIS_finish.htm on the ASUS RT-N10E router with firmware prior to 2.0.0.25 does not require authentication, which allows remote malicious users to discover the administrator password via a direct request.
Asus Rt-n10e Firmware 2.0.0.20
Asus Rt-n10e Firmware 2.0.0.19
Asus Rt-n10e Firmware 2.0.0.16
Asus Rt-n10e Firmware 2.0.0.10
Asus Rt-n10e Firmware
Asus Rt-n10e Firmware 2.0.0.7
Asus Rt-n10e -
9.3
CVSSv2
CVE-2013-3093
ASUS RT-N56U devices allow CSRF.
Asus Rt-n56u Firmware 3.0.0.4.374 979
Asus Rt-n10u Firmware 3.0.0.4.374 168
Asus Dsl-n55u Firmware 3.0.0.4.374 1397
Asus Rt-ac66u Firmware 3.0.0.4.374 2050
Asus Rt-n15u Firmware 3.0.0.4.374 16
Asus Rt-n53 Firmware 3.0.0.4.374 311
Asus Rt-n16 Firmware 3.0.0.4.374 979
3.3
CVSSv2
CVE-2011-4497
QIS_wizard.htm on the ASUS RT-N56U router with firmware prior to 1.0.1.4o allows remote malicious users to obtain the administrator password via a flag=detect request.
Asus Rt-n56u Firmware
Asus Rt-n56u Firmware 1.0.1.2
Asus Rt-n56u Firmware 1.0.0.9
Asus Rt-n56u
Asus Rt-n56u Firmware 1.0.1.3
5
CVSSv2
CVE-2014-1474
Algorithmic complexity vulnerability in Email::Address::List prior to 0.02, as used in RT 4.2.0 up to and including 4.2.2, allows remote malicious users to cause a denial of service (CPU consumption) via a string without an address.
Email\\ \\ Address\\
Bestpractical Rt 4.2.1
Bestpractical Rt 4.2.0
Bestpractical Rt 4.2.2
4.3
CVSSv2
CVE-2014-2925
Cross-site scripting (XSS) vulnerability in Advanced_Wireless_Content.asp in ASUS RT-AC68U and other RT series routers with firmware prior to 3.0.0.4.374.5047 allows remote malicious users to inject arbitrary web script or HTML via the current_page parameter to apply.cgi.
T-mobile Tm-ac1900 3.0.0.4.376 3169
Asus Rt-ac68u Firmware
Asus Rt-ac68u Firmware 3.0.0.4.374.4755
Asus Rt-ac68u Firmware 3.0.0.4.374 4887
Asus Rt-ac68u -
NA
CVE-2023-39238
It is identified a format string vulnerability in ASUS RT-AX56U V2. This vulnerability is caused by lacking validation for a specific value within its set_iperf3_svr.cgi module. A remote attacker with administrator privilege can exploit this vulnerability to perform remote arbit...
Asus Rt-ax55 Firmware 3.0.0.4.386 50460
Asus Rt-ax56u V2 Firmware 3.0.0.4.386 50460
Asus Rt-ac86u Firmware 3.0.0.4 386 51529
NA
CVE-2023-39239
It is identified a format string vulnerability in ASUS RT-AX56U V2’s General function API. This vulnerability is caused by lacking validation for a specific value within its apply.cgi module. A remote attacker with administrator privilege can exploit this vulnerability to ...
Asus Rt-ax55 Firmware 3.0.0.4.386 50460
Asus Rt-ax56u V2 Firmware 3.0.0.4.386 50460
Asus Rt-ac86u Firmware 3.0.0.4 386 51529
NA
CVE-2023-39240
It is identified a format string vulnerability in ASUS RT-AX56U V2’s iperf client function API. This vulnerability is caused by lacking validation for a specific value within its set_iperf3_cli.cgi module. A remote attacker with administrator privilege can exploit this vul...
Asus Rt-ax55 Firmware 3.0.0.4.386 50460
Asus Rt-ax56u V2 Firmware 3.0.0.4.386 50460
Asus Rt-ac86u Firmware 3.0.0.4 386 51529
8.5
CVSSv2
CVE-2013-5948
The Network Analysis tab (Main_Analysis_Content.asp) in the ASUS RT-AC68U and other RT series routers with firmware prior to 3.0.0.4.374.5047 allows remote authenticated users to execute arbitrary commands via shell metacharacters in the Target field (destIP parameter).
T-mobile Tm-ac1900 3.0.0.4.376 3169
Asus Rt-ac68u Firmware 3.0.0.4.374 4561
Asus Rt-ac68u Firmware 3.0.0.4.374 4887
Asus Rt-ac68u Firmware 3.0.0.4.374.4755
Asus Rt-ac68u -
1 EDB exploit
7.5
CVSSv2
CVE-2021-45756
Asus RT-AC68U <3.0.0.4.385.20633 and RT-AC5300 <3.0.0.4.384.82072 are affected by a buffer overflow in blocking_request.cgi.
Asus Rt-ac68u Firmware
Asus Rt-ac5300 Firmware
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3661
open redirect
CVE-2024-25512
CVE-2024-33788
command injection
SSTI
CVE-2024-0043
CVE-2024-29210
CVE-2024-25510
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »