6 matches found
Exploit for Command Injection in Asus Asmb8-Ikvm_Firmware
Exploit information for C...
ASUS ASMB8 iKVM 1.14.51 SNMP Remote Root
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Exploit Title: ASUS ASMB8 iKVM RCE and SSH Root Access Date: 2023-02-16 Exploit Author: [email protected] for NetworkSEC NWSSA-002-2023 Vendor Homepage: https://servers.asus.com/search?q=ASMB8 Version/Model: ASMB8 iKVM...
ASUS ASMB8 iKVM 1.14.51 SNMP Remote Root Vulnerability
ASUS ASMB8 iKVM firmware versions 1.14.51 and below suffers from a flaw where SNMPv2 can be used with write access to introduce arbitrary extensions to achieve remote code execution as root. The researchers also discovered a hardcoded administrative account...
CVE-2023-26602
creationtimestamp| type| source ---|---|--- 2023-02-26 22:26:08+00:00| seen| https://t.me/cibsecurity/58914 2024-01-16 13:05:23+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/9792 2024-08-16 09:09:02+00:00| published-proof-of-concept| https://t.me/Rootsec2/2612 2025-04-...
CVE-2023-26602
ASUS ASMB8 iKVM firmware through 1.14.51 allows remote attackers to execute arbitrary code by using SNMP to create extensions, as demonstrated by snmpset for NET-SNMP-EXTEND-MIB with /bin/sh for command execution...
CVE-2023-26602
CVE-2023-26602 affects ASUS ASMB8 iKVM firmware 1.14.51 and earlier. A remote attacker can execute arbitrary code by using SNMP to create extensions, demonstrated via snmpset for NET-SNMP-EXTEND-MIB with /bin/sh. Affected component/firmware: ASMB8 iKVM, firmware up to 1.14.51. Root cause: SNMP wr...