Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
6.3
CVSSv2

CVE-2014-2719

Published: 22/04/2014 Updated: 30/06/2016
CVSS v2 Base Score: 6.3 | Impact Score: 6.9 | Exploitability Score: 6.8
VMScore: 561
Vector: AV:N/AC:M/Au:S/C:C/I:N/A:N
Subscribe to Rt-ac66u Firmware

Vulnerability Summary

Advanced_System_Content.asp in the ASUS RT series routers with firmware prior to 3.0.0.4.374.5517, when an administrator session is active, allows remote authenticated users to obtain the administrator user name and password by reading the source code.

Vulnerable Product Search on Vulmon Subscribe to Product

asus rt-ac66u_firmware 3.0.0.4.140

asus rt-ac66u_firmware 3.0.0.4.220

asus rt-ac66u_firmware 3.0.0.4.246

asus rt-ac66u_firmware 3.0.0.4.260

asus rt-n16_firmware 3.0.0.3.108

asus rt-n16_firmware 3.0.0.3.162

asus rt-n16_firmware 3.0.0.3.178

asus rt-n16_firmware 3.0.0.4.220

asus rt-n56u_firmware 3.0.0.4.334

asus rt-n56u_firmware 3.0.0.4.342

asus rt-n56u_firmware 3.0.0.4.360

asus rt-n56u_firmware 7.0.1.21

asus rt-n56u_firmware 7.0.1.32

asus rt-n10e_firmware 2.0.0.19

asus rt-n10e_firmware 2.0.0.20

asus rt-n10e_firmware 2.0.0.24

asus rt-n10e_firmware 2.0.0.25

asus rt-n56u_firmware 1.0.1.4

asus rt-n56u_firmware 1.0.1.4o

asus rt-n56u_firmware 1.0.1.7c

asus rt-n56u_firmware 1.0.1.7f

asus rt-n65u_firmware 3.0.0.4.334

asus rt-n65u_firmware 3.0.0.4.342

asus rt-n65u_firmware 3.0.0.4.346

asus rt-n66u_firmware 3.0.0.4.272

asus rt-ac66u_firmware 3.0.0.4.354

asus rt-n10e_firmware 2.0.0.16

asus rt-n10e_firmware 2.0.0.7

asus rt-n14u_firmware 3.0.0.4.356

asus rt-n16_firmware 1.0.2.3

asus rt-n16_firmware 3.0.0.4.246

asus rt-n16_firmware 3.0.0.4.354

asus rt-n56u_firmware 1.0.1.8l

asus rt-n56u_firmware 3.0.0.4.318

asus rt-n65u_firmware 3.0.0.3.134

asus rt-n65u_firmware 3.0.0.4.260

asus rt-n66u_firmware 3.0.0.4.370

asus rt-ac68u_firmware 3.0.0.4.374.4755

asus rt-ac66u_firmware 3.0.0.4.270

asus rt-n10e_firmware 2.0.0.10

asus rt-n14u_firmware 3.0.0.4.322

asus rt-n16_firmware 1.0.1.9

asus rt-n16_firmware 3.0.0.4.260

asus rt-n16_firmware 7.0.2.38b

asus rt-n56u_firmware 1.0.1.8j

asus rt-n56u_firmware 1.0.1.8n

asus rt-n56u_firmware 8.1.1.4

asus rt-n65u_firmware 3.0.0.3.176

asus rt-ac68u_firmware 3.0.0.4.374_4561

asus rt-ac68u_firmware 3.0.0.4.374_4887

asus rt-ac68u -

t-mobile tm-ac1900 3.0.0.4.376_3169

Exploits

Exploit DB: ASUS RT Password Disclosure
ASUS RT series of routers disclose administrative credentials ...

References

CWE-200http://support.asus.com/download.aspx?m=RT-N66U+%28VER.B1%29http://seclists.org/fulldisclosure/2014/Apr/225http://dnlongen.blogspot.com/2014/04/CVE-2014-2719-Asus-RT-Password-Disclosure.htmlhttps://support.t-mobile.com/docs/DOC-21994https://nvd.nist.govhttps://packetstormsecurity.com/files/126213/ASUS-RT-Password-Disclosure.html
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-30924CVE-2024-3400overflowCVE-2024-23528CVE-2024-21338CVE-2024-3818CVE-2024-23535NULL pointer dereferenceelevation of privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook