Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
asus asus firmware vulnerabilities and exploits
(subscribe to this query)
4.8
CVSSv2
CVE-2019-11061
A broken access control vulnerability in HG100 firmware versions up to 4.00.06 allows an attacker in the same local area network to control IoT devices that connect with itself via http://[target]/smarthome/devicecontrol without any authentication. CVSS 3.0 base score 10 (Confide...
Asus Hg100 Firmware
1 Github repository
7.8
CVSSv2
CVE-2019-11060
The web api server on Port 8080 of ASUS HG100 firmware up to 1.05.12, which is vulnerable to Slowloris HTTP Denial of Service: an attacker can cause a Denial of Service (DoS) by sending headers very slowly to keep HTTP or HTTPS connections and associated resources alive for a lon...
Asus Hg100 Firmware
4.3
CVSSv2
CVE-2020-15498
An issue exists on ASUS RT-AC1900P routers prior to 3.0.0.4.385_20253. The router accepts an arbitrary server certificate for a firmware update. The culprit is the --no-check-certificate option passed to wget tool used to download firmware update files.
Asus Rt-ac1900p Firmware
7.5
CVSSv2
CVE-2018-8879
Stack-based buffer overflow in Asuswrt-Merlin firmware for ASUS devices older than 384.4 and ASUS firmware prior to 3.0.0.4.382.50470 for devices allows remote malicious users to execute arbitrary code by providing a long string to the blocking.asp page via a GET or POST request....
Asus Rt-ac66u Firmware
5.8
CVSSv2
CVE-2015-7788
ASUS Japan WL-330NUL devices with firmware prior to 3.0.0.42 allow remote malicious users to execute arbitrary commands via unspecified vectors.
Asus Wl-330nul Firmware
3.3
CVSSv2
CVE-2015-7787
ASUS Japan WL-330NUL devices with firmware prior to 3.0.0.42 allow remote malicious users to discover the WPA2-PSK passphrase via unspecified vectors.
Asus Wl-330nul Firmware
4.3
CVSSv2
CVE-2020-15499
An issue exists on ASUS RT-AC1900P routers prior to 3.0.0.4.385_20253. They allow XSS via spoofed Release Notes on the Firmware Upgrade page.
Asus Rt-ac1900p Firmware
NA
CVE-2021-37316
SQL injection vulnerability in Cloud Disk in ASUS RT-AC68U router firmware version prior to 3.0.0.4.386.41634 allows remote malicious users to view sensitive information via /etc/shadow.
Asus Rt-ac68u Firmware
4.3
CVSSv2
CVE-2018-0582
Cross-site scripting vulnerability in ASUS RT-AC68U Firmware version before 3.0.0.4.380.1031 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Asus Rt-ac68u Firmware
6.8
CVSSv2
CVE-2018-0647
Cross-site request forgery (CSRF) vulnerability in WL-330NUL Firmware version before 3.0.0.46 allows remote malicious users to hijack the authentication of administrators via unspecified vectors.
Asus Wl-330nul Firmware
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »