Lucene search

K
saintSAINT CorporationSAINT:5069DD588A8DDA678A16F6B17DE4B1F1
HistoryFeb 28, 2018 - 12:00 a.m.

ASUSWRT vpnupload.cgi authentication bypass

2018-02-2800:00:00
SAINT Corporation
download.saintcorporation.com
51
asuswrt
firmware
authentication bypass
vpnupload.cgi
remote attackers
arbitrary commands
upgrade
version 3.0.0.4.384_10007
linux
cve-2018-5999

AI Score

9.9

Confidence

High

EPSS

0.254

Percentile

96.7%

Added: 02/28/2018
CVE: CVE-2018-5999

Background

ASUSWRT is the firmware used in many ASUS devices.

Problem

The combination of two separate vulnerabilities in ASUSWRT allows remote attackers to execute arbitrary commands. The first vulnerability allows an unauthenticated user to make certain POST requests. The second allows NVRAM settings to be changed using a POST request to **vpnupload.cgi**.

Resolution

Upgrade to ASUSWRT version 3.0.0.4.384_10007 or higher.

References

http://seclists.org/fulldisclosure/2018/Jan/78

Platforms

Linux

AI Score

9.9

Confidence

High

EPSS

0.254

Percentile

96.7%