Asus

Rt-ac86u Firmware

21 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
9.8

CVE-2024-3080

  • EPSS 42.89%
  • Published 14.06.2024 03:15:13
  • Last modified 21.11.2024 09:28:51

Certain ASUS router models have authentication bypass vulnerability, allowing unauthenticated remote attackers to log in the device.

7.2

CVE-2024-3079

  • EPSS 3.04%
  • Published 14.06.2024 03:15:13
  • Last modified 21.11.2024 09:28:51

Certain models of ASUS routers have buffer overflow vulnerabilities, allowing remote attackers with administrative privileges to execute arbitrary commands on the device.

7.2

CVE-2023-39240

  • EPSS 0.85%
  • Published 07.09.2023 08:15:07
  • Last modified 21.11.2024 08:14:58

It is identified a format string vulnerability in ASUS RT-AX56U V2’s iperf client function API. This vulnerability is caused by lacking validation for a specific value within its set_iperf3_cli.cgi module. A remote attacker with administrator privil...

7.2

CVE-2023-39239

  • EPSS 0.85%
  • Published 07.09.2023 08:15:07
  • Last modified 21.11.2024 08:14:58

It is identified a format string vulnerability in ASUS RT-AX56U V2’s General function API. This vulnerability is caused by lacking validation for a specific value within its apply.cgi module. A remote attacker with administrator privilege can explo...

7.2

CVE-2023-39238

  • EPSS 3.38%
  • Published 07.09.2023 08:15:07
  • Last modified 21.11.2024 08:14:58

It is identified a format string vulnerability in ASUS RT-AX56U V2. This vulnerability is caused by lacking validation for a specific value within its set_iperf3_svr.cgi module. A remote attacker with administrator privilege can exploit this vulnera...

8.8

CVE-2023-39237

  • EPSS 0.6%
  • Published 07.09.2023 07:15:08
  • Last modified 21.11.2024 08:14:58

ASUS RT-AC86U Traffic Analyzer - Apps analysis function has insufficient filtering of special character. A remote attacker with regular user privilege can exploit this vulnerability to perform command injection attack to execute arbitrary commands, ...

8.8

CVE-2023-39236

  • EPSS 0.7%
  • Published 07.09.2023 07:15:08
  • Last modified 21.11.2024 08:14:58

ASUS RT-AC86U Traffic Analyzer - Statistic function has insufficient filtering of special character. A remote attacker with regular user privilege can exploit this vulnerability to perform command injection attack to execute arbitrary commands, disr...

8.8

CVE-2023-38033

  • EPSS 0.7%
  • Published 07.09.2023 07:15:08
  • Last modified 21.11.2024 08:12:42

ASUS RT-AC86U unused Traffic Analyzer legacy Statistic function has insufficient filtering of special character. A remote attacker with regular user privilege can exploit this vulnerability to perform command injection attack to execute arbitrary co...

8.8

CVE-2023-38032

  • EPSS 0.69%
  • Published 07.09.2023 07:15:08
  • Last modified 21.11.2024 08:12:42

ASUS RT-AC86U AiProtection security- related function has insufficient filtering of special character. A remote attacker with regular user privilege can exploit this vulnerability to perform command injection attack to execute arbitrary commands, di...

8.8

CVE-2023-38031

  • EPSS 1.1%
  • Published 07.09.2023 04:15:10
  • Last modified 21.11.2024 08:12:42

ASUS RT-AC86U Adaptive QoS - Web History function has insufficient filtering of special character. A remote attacker with regular user privilege can exploit this vulnerability to perform command injection attack to execute arbitrary commands, disrup...