Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8488 matches found

CVE
CVEadded 2023/09/18 2:36 a.m.45 views

CVE-2023-41349

CVE-2023-41349 affects ASUS RT-AX88U routers and involves an externally controllable format string vulnerability in the Advanced OpenVPN function. An authenticated remote attacker can exploit an exported OpenVPN configuration to trigger a format string attack, leading to sensitive information lea...

8.8CVSS8.6AI score0.00311EPSS
Exploits0References1Affected Software1
NVD
NVDadded 2023/09/07 8:15 a.m.15 views

CVE-2023-39238

It is identified a format string vulnerability in ASUS RT-AX56U V2. This vulnerability is caused by lacking validation for a specific value within its setiperf3svr.cgi module. A remote attacker with administrator privilege can exploit this vulnerability to perform remote arbitrary code execution,...

7.2CVSS7.1AI score0.04596EPSS
Exploits0References1
OSV
OSVadded 2023/09/07 8:15 a.m.2 views

CVE-2023-39238

It is identified a format string vulnerability in ASUS RT-AX56U V2. This vulnerability is caused by lacking validation for a specific value within its setiperf3svr.cgi module. A remote attacker with administrator privilege can exploit this vulnerability to perform remote arbitrary code execution,...

7.2CVSS6AI score
Exploits0References1
OSV
OSVadded 2023/09/07 8:15 a.m.2 views

CVE-2023-39240

It is identified a format string vulnerability in ASUS RT-AX56U V2’s iperf client function API. This vulnerability is caused by lacking validation for a specific value within its setiperf3cli.cgi module. A remote attacker with administrator privilege can exploit this vulnerability to perform remo...

7.2CVSS6AI score
Exploits0References1
NVD
NVDadded 2023/09/07 8:15 a.m.13 views

CVE-2023-39239

It is identified a format string vulnerability in ASUS RT-AX56U V2’s General function API. This vulnerability is caused by lacking validation for a specific value within its apply.cgi module. A remote attacker with administrator privilege can exploit this vulnerability to perform remote arbitrary...

7.2CVSS7.1AI score0.01128EPSS
Exploits0References1
NVD
NVDadded 2023/09/07 8:15 a.m.12 views

CVE-2023-39240

It is identified a format string vulnerability in ASUS RT-AX56U V2’s iperf client function API. This vulnerability is caused by lacking validation for a specific value within its setiperf3cli.cgi module. A remote attacker with administrator privilege can exploit this vulnerability to perform remo...

7.2CVSS7.1AI score0.01128EPSS
Exploits0References1
OSV
OSVadded 2023/09/07 8:15 a.m.2 views

CVE-2023-39239

It is identified a format string vulnerability in ASUS RT-AX56U V2’s General function API. This vulnerability is caused by lacking validation for a specific value within its apply.cgi module. A remote attacker with administrator privilege can exploit this vulnerability to perform remote arbitrary...

7.2CVSS6AI score0.01128EPSS
Exploits0References1
Prion
Prionadded 2023/09/07 8:15 a.m.25 views

Format string

It is identified a format string vulnerability in ASUS RT-AX56U V2’s iperf client function API. This vulnerability is caused by lacking validation for a specific value within its setiperf3cli.cgi module. An unauthenticated remote attacker can exploit this vulnerability without privilege to perfor...

7.5CVSS9.6AI score0.01128EPSS
Exploits0References1Affected Software3
Prion
Prionadded 2023/09/07 8:15 a.m.21 views

Format string

It is identified a format string vulnerability in ASUS RT-AX56U V2’s General function API. This vulnerability is caused by lacking validation for a specific value within its apply.cgi module. An unauthenticated remote attacker can exploit this vulnerability without privilege to perform remote...

7.5CVSS9.6AI score0.01128EPSS
Exploits0References1Affected Software3
Prion
Prionadded 2023/09/07 8:15 a.m.29 views

Format string

It is identified a format string vulnerability in ASUS RT-AX56U V2. This vulnerability is caused by lacking validation for a specific value within its setiperf3svr.cgi module. An unauthenticated remote attacker can exploit this vulnerability without privilege to perform remote arbitrary code...

7.5CVSS9.6AI score0.04596EPSS
Exploits0References1Affected Software3
Cvelist
Cvelistadded 2023/09/07 7:25 a.m.17 views

CVE-2023-39240 ASUS RT-AX55、RT-AX56U_V2 - Format String - 3

It is identified a format string vulnerability in ASUS RT-AX56U V2’s iperf client function API. This vulnerability is caused by lacking validation for a specific value within its setiperf3cli.cgi module. A remote attacker with administrator privilege can exploit this vulnerability to perform remo...

7.2CVSS7.3AI score0.01128EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2023/09/07 7:25 a.m.9 views

CVE-2023-39240 ASUS RT-AX55、RT-AX56U_V2 - Format String - 3

It is identified a format string vulnerability in ASUS RT-AX56U V2’s iperf client function API. This vulnerability is caused by lacking validation for a specific value within its setiperf3cli.cgi module. A remote attacker with administrator privilege can exploit this vulnerability to perform remo...

7.2CVSS7.5AI score0.01128EPSS
Exploits0References1
CVE
CVEadded 2023/09/07 7:25 a.m.2524 views

CVE-2023-39240

CVE-2023-39240 affects ASUS RT-AX56U V2: a format string vulnerability in the iperf client API, caused by insufficient validation in set_iperf3_cli.cgi. A remote attacker with administrator privileges could achieve remote code execution or service disruption. Exploitation details are not provided...

7.2CVSS7.3AI score0.01128EPSS
Exploits0References1Affected Software1
CVE
CVEadded 2023/09/07 7:18 a.m.2522 views

CVE-2023-39239

The CVE-2023-39239 entry concerns an authenticated/remote (sources vary on privilege) format string vulnerability in the General function API (apply.cgi) of ASUS RT-AX56U V2. The flaw arises from lack of input validation for a specific value in apply.cgi, enabling remote code execution or disrupt...

7.2CVSS7.3AI score0.01128EPSS
Exploits0References1Affected Software1
Cvelist
Cvelistadded 2023/09/07 7:18 a.m.12 views

CVE-2023-39239 ASUS RT-AX55、RT-AX56U_V2、RT-AC86U - Format String - 2

It is identified a format string vulnerability in ASUS RT-AX56U V2’s General function API. This vulnerability is caused by lacking validation for a specific value within its apply.cgi module. A remote attacker with administrator privilege can exploit this vulnerability to perform remote arbitrary...

7.2CVSS7.3AI score0.01128EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2023/09/07 7:18 a.m.13 views

CVE-2023-39239 ASUS RT-AX55、RT-AX56U_V2、RT-AC86U - Format String - 2

It is identified a format string vulnerability in ASUS RT-AX56U V2’s General function API. This vulnerability is caused by lacking validation for a specific value within its apply.cgi module. A remote attacker with administrator privilege can exploit this vulnerability to perform remote arbitrary...

7.2CVSS7.5AI score0.01128EPSS
Exploits0References1
Cvelist
Cvelistadded 2023/09/07 7:10 a.m.14 views

CVE-2023-39238 ASUS RT-AX55、RT-AX56U_V2 - Format String - 1

It is identified a format string vulnerability in ASUS RT-AX56U V2. This vulnerability is caused by lacking validation for a specific value within its setiperf3svr.cgi module. A remote attacker with administrator privilege can exploit this vulnerability to perform remote arbitrary code execution,...

7.2CVSS7.3AI score0.04596EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2023/09/07 7:10 a.m.12 views

CVE-2023-39238 ASUS RT-AX55、RT-AX56U_V2 - Format String - 1

It is identified a format string vulnerability in ASUS RT-AX56U V2. This vulnerability is caused by lacking validation for a specific value within its setiperf3svr.cgi module. A remote attacker with administrator privilege can exploit this vulnerability to perform remote arbitrary code execution,...

7.2CVSS7.5AI score0.04596EPSS
Exploits0References1
CVE
CVEadded 2023/09/07 7:10 a.m.99 views

CVE-2023-39238

CVE-2023-39238 affects ASUS RT-AX56U V2. The issue is a format string vulnerability in the set_iperf3_svr.cgi module caused by missing input validation. A remote attacker with administrator privileges can trigger remote arbitrary code execution, alter system operation, or disrupt service. Reporte...

7.2CVSS7.3AI score0.04596EPSS
Exploits0References1Affected Software1
CNNVD
CNNVDadded 2023/09/07 12:0 a.m.3 views

ASUS RT-AX56U Formatting String Error Vulnerability

The ASUS RT-AX56U is a wireless router from Asus China. The ASUS RT-AX56U suffers from a Format String Error vulnerability that stems from a format string vulnerability found in the iperf client function API...

7.2CVSS6.8AI score0.01128EPSS
Exploits0References2
Rows per page
Query Builder