CVE-2021-45756

Asus RT-AC68U 3.0.0.4.385.20633 and RT-AC5300 3.0.0.4.384.82072 are affected by a buffer overflow in blockingrequest.cgi...

Buffer overflow

Asus RT-AC68U 3.0.0.4.385.20633 and RT-AC5300 3.0.0.4.384.82072 are affected by a buffer overflow in blockingrequest.cgi...

CVE-2021-45756

Asus RT-AC68U 3.0.0.4.385.20633 and RT-AC5300 3.0.0.4.384.82072 are affected by a buffer overflow in blockingrequest.cgi...

CVE-2021-45756

Summary: The CVE-2021-45756 issue affects ASUS RT-AC68U (versions prior to 3.0.0.4.385.20633) and RT-AC5300 (prior to 3.0.0.4.384.82072). A buffer overflow in blocking_request.cgi (an in-memory operation) can lead to arbitrary command execution. The vulnerability is confirmed by multiple sources ...

ASUS RT-AC68U和ASUS RT-AC5300 安全漏洞

The ASUS RT-AC68U and ASUS RT-AC5300 are both routers from the Chinese company ASUS. A command injection vulnerability exists in the Asus RT-AC68U prior to version 3.0.0.4.385.20633 and RT-AC5300 prior to version 3.0.0.4.384.82072, which stems from a failure to properly validate data boundaries...

Buffer overflow

ASUS RT-AX86U router firmware below version under 9.0.0.4386 has a buffer overflow in the blockingrequest.cgi function of the httpd module that can cause code execution when an attacker constructs malicious data...

Null pointer dereference

blockingrequest.cgi on ASUS GT-AC5300 devices through 3.0.0.4.38432738 allows remote attackers to cause a denial of service NULL pointer dereference and device crash via a request that lacks a timestap parameter...

CVE-2018-17127

blockingrequest.cgi on ASUS GT-AC5300 devices through 3.0.0.4.38432738 allows remote attackers to cause a denial of service NULL pointer dereference and device crash via a request that lacks a timestap parameter...