Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
10
CVSSv2

CVE-2018-14714

Published: 13/05/2019 Updated: 03/10/2019
CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10
CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9
VMScore: 891
Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Subscribe to Rt-ac3200 Firmware

Vulnerability Summary

System command injection in appGet.cgi on ASUS RT-AC3200 version 3.0.0.4.382.50010 allows malicious users to execute system commands via the "load_script" URL parameter.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

asus rt-ac3200_firmware 3.0.0.4.382.50010

Github Repositories

https://github.com/sunn1day/CVE-2018-14714-POC

CVE-2018-14714 PoC RCE

CVE-2018-14714-POC Apr 25 2020, Altin Thartori, githubcom/tin-z Vulnerability Details System command injection in appGetcgi on ASUS RT-AC3200 version 300438250010 allows attackers to execute system commands via the "load_script" URL parameter References For CVE-2018-14714 : blogsecurityevaluatorscom/asus-routers-overflow-with-vulnerabilities-b111b

https://github.com/tin-z/CVE-2018-14714-POC

POC CVE-2018-14714

CVE-2018-14714-POC Repository moved here: githubcom/sunn1day/CVE-2018-14714-POC

References

NVD-CWE-noinfohttps://blog.securityevaluators.com/asus-routers-overflow-with-vulnerabilities-b111bc1c8eb8https://nvd.nist.govhttps://github.com/sunn1day/CVE-2018-14714-POC
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-2907hardcodedinjectCVE-2024-20359CVE-2024-2467CVE-2024-4077CVE-2024-22391cameraCVE-2024-20353
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook