![]() If upgrading is not required or might affect your configurations, turning off the vulnerable services is recommended. This is due to lack of bounds checking on attacker controlled data. Netatalk before 3.1.12 is vulnerable to an out of bounds write in dsiopensess.c. The list of routers affected by these CVE(s) includes,ĪSUS has recommended all of its users patch their routers to prevent attackers. CVSS3 Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H. Out of bounds write in dsi_opensess.c in Netatalk leads to arbitrary code executionĬVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HĬVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:Hīounds writing leads to memory corruption ![]() Outdated Library (libusrsctp) exploitationĬVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N Man-In-the-Middle attack due to insecure Cookie attributeĬVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H Out of Bounds Write due to insufficient validation of network packet header CVE-2018-1160 - Alert Detail - Security Database 9.8 - CVE-2018-1160 Executive Summary This Alert is flagged as TOP 25 Common Weakness Enumeration from CWE/SANS. CVEĬVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HĬommand Injection due to unsanitized parameters in specific web URLsĬVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H The recent one was found to be CVE-2023-28702, and the oldest one was CVE-2018-1160. CVE(s) of ASUS critical Router Vulnerabilities:ĪSUS has fixed around 9 CVEs, as reported in the security advisory. The company has recommended its users upgrade to the latest version of firmware to fix these router vulnerabilities. The vulnerabilities were found to affect multiple ASUS routers with CVEs. ![]() ASUS has recently released a security advisory in which several ASUS critical router vulnerabilities have been fixed.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |