Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
rt vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-34360
A stored cross-site scripting (XSS) issue exists within the Custom User Icons functionality of ASUS RT-AX88U running firmware versions 3.0.0.4.388.23110 and prior. After a remote attacker logging in device with regular user privilege, the remote attacker can perform a Stored Cros...
Asus Rt-ax88u Firmware
NA
CVE-2023-41349
ASUS router RT-AX88U has a vulnerability of using externally controllable format strings within its Advanced Open VPN function. An authenticated remote attacker can exploit the exported OpenVPN configuration to execute an externally-controlled format string attack, resulting in ...
Asus Rt-ax88u Firmware
NA
CVE-2023-47678
An improper access control vulnerability exists in RT-AC87U all versions. An attacker may read or write files that are not intended to be accessed by connecting to a target device via tftp.
Asus Rt-ac87u Firmware
NA
CVE-2023-31195
ASUS Router RT-AX3000 Firmware versions before 3.0.0.4.388.23403 uses sensitive cookies without 'Secure' attribute. When an attacker is in a position to be able to mount a man-in-the-middle attack, and a user is tricked to log into the affected device through an unencry...
Asus Rt-ax3000 Firmware
NA
CVE-2023-29772
A Cross-site scripting (XSS) vulnerability in the System Log/General Log page of the administrator web UI in ASUS RT-AC51U wireless router firmware version up to and including 3.0.0.4.380.8591 allows remote malicious users to inject arbitrary web script or HTML via a malicious ne...
Asus Rt-ac51u Firmware
7.5
CVSSv2
CVE-2018-8879
Stack-based buffer overflow in Asuswrt-Merlin firmware for ASUS devices older than 384.4 and ASUS firmware prior to 3.0.0.4.382.50470 for devices allows remote malicious users to execute arbitrary code by providing a long string to the blocking.asp page via a GET or POST request....
Asus Rt-ac66u Firmware
4.3
CVSSv2
CVE-2015-4679
Multiple cross-site scripting (XSS) vulnerabilities in the web interface in Airties RT-210 allow remote malicious users to inject arbitrary web script or HTML via the (1) ddns_domainame or (2) ddns_account parameter to ddns.stm.
Airties Rt-210 Firmware
7.8
CVSSv2
CVE-2021-3229
Denial of service in ASUSWRT ASUS RT-AX3000 firmware versions 3.0.0.4.384_10177 and previous versions versions allows an malicious user to disrupt the use of device setup services via continuous login error.
Asus Rt-ax3000 Firmware
5
CVSSv2
CVE-2020-29655
An injection vulnerability exists in RT-AC88U Download Master prior to 3.1.0.108. Accessing Main_Login.asp?flag=1&productname=FOOBAR&url=/downloadmaster/task.asp will redirect to the login site, which will show the value of the parameter productname within the title. An a...
Asus Rt-ac88u Firmware
5
CVSSv2
CVE-2020-29656
An information disclosure vulnerability exists in RT-AC88U Download Master prior to 3.1.0.108. A direct access to /downloadmaster/dm_apply.cgi?action_mode=initial&download_type=General&special_cgi=get_language makes it possible to reach "unknown functionality" i...
Asus Rt-ac88u Firmware
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23316
SQL injection
type confusion
CVE-2024-20697
CVE-2024-4344
local
CVE-2024-30043
CVE-2024-3821
CVE-2024-5041
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »