Lucene search
K

The vulnerability of the httpd function’s unescape function in the cgi.c file of the Asuswrt-Merlin New Gen microprogramming system allows a hacker to cause memory corruption.

🗓️ 21 Jun 2023 00:00:00Reported by FSTEC of Russia — Information Security Threat DatabaseType 
bdu_fstec
 bdu_fstec
🔗 bdu.fstec.ru👁 4 Views

Asuswrt-Merlin httpd unescape in cgi.c enables remote memory corruption via crafted HTTP request.

Related
Detection
Refs
ReporterTitlePublishedViews
Family
Circl
CVE-2022-26376
19 Jun 202319:55
circl
CNNVD
ASUS Asuswrt-Merlin 缓冲区错误漏洞
27 Jul 202200:00
cnnvd
CVE
CVE-2022-26376
5 Aug 202221:18
cve
Cvelist
CVE-2022-26376
5 Aug 202221:18
cvelist
EUVD
EUVD-2022-30935
3 Oct 202520:07
euvd
Malwarebytes
Update now! ASUS fixes nine security flaws
20 Jun 202304:00
malwarebytes
NVD
CVE-2022-26376
5 Aug 202222:15
nvd
OSV
CVE-2022-26376
5 Aug 202222:15
osv
Prion
Memory corruption
5 Aug 202222:15
prion
Positive Technologies
PT-2022-6671 · Asus · Asuswrt
5 Aug 202200:00
ptsecurity
Rows per page
Vulners
Node
asustek_computerasuswrtRange<3.0.0.4.386_48706
OROR
asustek_computerxt8Range<3.0.0.4.386_48706
OR
asustek_computertuf-ax3000_v2Range<3.0.0.4.386_48750
OR
asustek_computerxd4Range<3.0.0.4.386_48790
OR
asustek_computeret12Range<3.0.0.4.386_48823
OR
asustek_computergt-ax6000Range<3.0.0.4.386_48823
OR
asustek_computerxt12Range<3.0.0.4.386_48823
OR
asustek_computerrt-ax58uRange<3.0.0.4.386_48908
OR
asustek_computerxt9Range<3.0.0.4.388_20027
OR
asustek_computerxd6Range<3.0.0.4.386_49356
OR
asustek_computergt-ax11000_proRange<3.0.0.4.386_48996
OR
asustek_computergt-axe16000Range<3.0.0.4.386_48786
OR
asustek_computerrt-ax86uRange<3.0.0.4.386_49447
OR
asustek_computerrt-ax68uRange<3.0.0.4.386_49479
OR
asustek_computerrt-ax56uRange<3.0.0.4.386_49380
OR
asustek_computerrt-ax82uRange<3.0.0.4.386_49559
OR
asustek_computerrt-ax55Range<3.0.0.4.386_49559
OR
asustek_computergt-ax11000Range<3.0.0.4.386_49559

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

13 Sep 2024 00:00Current
6.9Medium risk
Vulners AI Score6.9
CVSS 39.8
CVSS 210
EPSS0.01075
4