The specific function in ASUS BMC’s firmware Web management page (Generate new certificate function) does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote attackers use the leakage to abnormally terminate the Web service.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
asus asmb9-ikvm firmware 1.11.12 |
||
asus rs720a-e9-rs24-e firmware 1.10.3 |
||
asus rs700a-e9-rs4 firmware 1.10.0 |
||
asus rs700-e9-rs4 firmware 1.09 |
||
asus esc4000 g4x firmware 1.11.6 |
||
asus rs700-e9-rs12 firmware 1.11.5 |
||
asus rs100-e10-pi2 firmware 1.13.6 |
||
asus rs300-e10-ps4 firmware 1.13.6 |
||
asus rs300-e10-rs4 firmware 1.13.6 |
||
asus rs500a-e9-ps4 firmware 1.14.1 |
||
asus rs500a-e9-rs4 firmware 1.14.1 |
||
asus rs500a-e9 rs4 u firmware 1.14.1 |
||
asus e700 g4 firmware 1.14.1 |
||
asus ws c422 pro/se firmware 1.14.1 |
||
asus ws x299 pro/se firmware 1.14.1 |
||
asus z11pa-u12 firmware 1.15.1 |
||
asus z11pa-u12/10g-2s firmware 1.15.1 |
||
asus knpa-u16 firmware 1.13.4 |
||
asus esc4000 dhd g4 firmware 1.13.7 |
||
asus esc4000 g4 firmware 1.15.2 |
||
asus rs720q-e9-rs24-s firmware 1.15.0 |
||
asus rs720q-e9-rs8 firmware 1.15.0 |
||
asus rs720q-e9-rs8-s firmware 1.15.0 |
||
asus z11pa-d8 firmware 1.14.1 |
||
asus z11pa-d8c firmware 1.14.1 |
||
asus rs720-e9-rs24-u firmware 1.14.3 |
||
asus rs720-e9-rs8-g firmware 1.15.2 |
||
asus rs500-e9-ps4 firmware 1.15.4 |
||
asus pro e800 g4 firmware 1.14.2 |
||
asus rs500-e9-rs4 firmware 1.15.4 |
||
asus rs500-e9-rs4-u firmware 1.15.4 |
||
asus rs520-e9-rs12-e firmware 1.15.3 |
||
asus rs520-e9-rs8 firmware 1.15.3 |
||
asus esc8000 g4 firmware 1.15.4 |
||
asus esc8000 g4/10g firmware 1.15.4 |
||
asus rs720-e9-rs12-e firmware 1.15.2 |
||
asus ws c621e sage firmware 1.15.1 |
||
asus rs500a-e10-ps4 firmware 1.15.2 |
||
asus rs500a-e10-rs4 firmware 1.15.2 |
||
asus rs700a-e9-rs12v2 firmware 1.15.1 |
||
asus rs700a-e9-rs4v2 firmware 1.15.1 |
||
asus rs720a-e9-rs12v2 firmware 1.15.2 |
||
asus rs720a-e9-rs24v2 firmware 1.15.1 |
||
asus z11pr-d16 firmware 1.15.3 |