Lucene search

[email protected]CVE-2018-8826

HistoryApr 20, 2018 - 8:29 p.m.

CVE-2018-8826

2018-04-2020:29:00

CWE-20

[email protected]

web.nvd.nist.gov

asus

routers

remote code execution

cve-2018-8826

firmware

vulnerability

nvd

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.6 High

AI Score

Confidence

High

0.086 Low

EPSS

Percentile

94.5%

JSON

ASUS RT-AC51U, RT-AC58U, RT-AC66U, RT-AC1750, RT-ACRH13, and RT-N12 D1 routers with firmware before 3.0.0.4.380.8228; RT-AC52U B1, RT-AC1200 and RT-N600 routers with firmware before 3.0.0.4.380.10446; RT-AC55U and RT-AC55UHP routers with firmware before 3.0.0.4.382.50276; RT-AC86U and RT-AC2900 routers with firmware before 3.0.0.4.384.20648; and possibly other RT-series routers allow remote attackers to execute arbitrary code via unspecified vectors.

Affected configurations

NVD

Node

asusrt-ac51u_firmwareMatch3.0.0.4.380.8228

AND

asusrt-ac51uMatch-

Node

asusrt-ac58u_firmwareMatch3.0.0.4.380.8228

AND

asusrt-ac58uMatch-

Node

asusrt-ac66u_firmwareMatch3.0.0.4.380.8228

AND

asusrt-ac66uMatch-

Node

asusrt-ac1750_firmwareMatch3.0.0.4.380.8228

AND

asusrt-ac1750Match-

Node

asusrt-n12_d1_firmwareMatch3.0.0.4.380.8228

AND

asusrt-n12_d1Match-

Node

asusrt-ac52u_b1_firmwareMatch3.0.0.4.380.10446

AND

asusrt-ac52u_b1Match-

Node

asusrt-ac1200_firmwareMatch3.0.0.4.380.10446

AND

asusrt-ac1200Match-

Node

asusrt-n600_firmwareMatch3.0.0.4.380.10446

AND

asusrt-n600Match-

Node

asusrt-ac55u_firmwareMatch3.0.0.4.382.50276

AND

asusrt-ac55uMatch-

Node

asusrt-ac55uhp_firmwareMatch3.0.0.4.382.50276

AND

asusrt-ac55uhpMatch-

Node

asusrt-ac86u_firmwareMatch3.0.0.4.384.20648

AND

asusrt-ac86uMatch-

Node

asusrt-acrh13_firmwareMatch3.0.0.4.380.8228

AND

asusrt-acrh13Match-

Node

asusrt-ac2900_firmwareMatch3.0.0.4.384.20648

AND

asusrt-ac2900Match-

CPENameOperatorVersion
asus:rt-ac51u_firmwareasus rt-ac51u firmwareeq3.0.0.4.380.8228

CPE	Name	Operator	Version
asus:rt-ac51u_firmware	asus rt-ac51u firmware	eq	3.0.0.4.380.8228

References

www.asus.com/ca-en/Networking/RT-N600/HelpDesk_Download/

www.asus.com/Networking/RT-AC2900/HelpDesk_BIOS/

www.asus.com/Networking/RT-AC52U-B1/HelpDesk_BIOS/

www.asus.com/sg/Networking/RT-AC58U/HelpDesk_BIOS/

www.asus.com/us/Networking/RT-AC1200/HelpDesk_BIOS/

www.asus.com/us/Networking/RT-AC1750/HelpDesk_BIOS/

www.asus.com/us/Networking/RT-AC86U/HelpDesk_BIOS/

www.asus.com/us/Networking/RT-ACRH13/HelpDesk_BIOS/

www.asus.com/us/Networking/RTAC66U/HelpDesk_BIOS/

www.asus.com/us/Networking/RTN12_D1/HelpDesk_BIOS/

www.asus.com/us/Networking/RTN66W/HelpDesk_BIOS/

www.asus.com/us/supportonly/RT-AC51U/HelpDesk_BIOS/

www.asus.com/us/supportonly/RT-AC55U/HelpDesk_BIOS/

www.asus.com/us/supportonly/RT-AC55UHP/HelpDesk_BIOS/

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.6 High

AI Score

Confidence

High

0.086 Low

EPSS

Percentile

94.5%

JSON

Related for CVE-2018-8826

prion1 nvd1 cvelist1