Lucene search
K

19 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-42973

Malicious code in bioql PyPI...

7.2CVSS9.2AI score0.01158EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2023-42972

Malicious code in bioql PyPI...

7.2CVSS9.2AI score0.01187EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-42974

Malicious code in bioql PyPI...

7.2CVSS9.2AI score0.01158EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/11/29 12:0 a.m.5 views

PT-2024-9469 · Asus · Asus Rt-Ax55 V2 +6

Name of the Vulnerable Software and Affected Versions: ASUS RT-AX55 version ASUS RT-AX55 V2 version ASUS RT-AX56U version ASUS RT-AX56U V2 version ASUS RT-AX57 version ASUS RT-AX58U version ASUS RT-AX58U V2 version Description: The issue is related to insufficient input validation, which can be...

4.9CVSS7.1AI score0.00346EPSS
Exploits0References8
BDU FSTEC
BDU FSTEC
added 2023/12/12 12:0 a.m.4 views

The vulnerability of the cm_processChangedConfigMsg function in ASUS’ Wi-Fi router microprogramming systems, such as the RT-AX56U V2 and RT-AC86U models, allows a hacker to execute arbitrary code or cause malfunctions in the device.

The vulnerability of the cmprocessChangedConfigMsg function in ASUS’ Wi-Fi router microprogramming systems, such as the RT-AX56U V2 and RT-AC86U models, is related to the use of uncontrolled format strings. Exploiting this vulnerability could allow an attacker to execute arbitrary code or cause...

10CVSS8.2AI score0.0089EPSS
Exploits0References4Affected Software2
NVD
NVD
added 2023/09/07 8:15 a.m.13 views

CVE-2023-39240

It is identified a format string vulnerability in ASUS RT-AX56U V2’s iperf client function API. This vulnerability is caused by lacking validation for a specific value within its setiperf3cli.cgi module. A remote attacker with administrator privilege can exploit this vulnerability to perform remo...

7.2CVSS7.1AI score0.01158EPSS
Exploits0References1
OSV
OSV
added 2023/09/07 8:15 a.m.4 views

CVE-2023-39239

It is identified a format string vulnerability in ASUS RT-AX56U V2’s General function API. This vulnerability is caused by lacking validation for a specific value within its apply.cgi module. A remote attacker with administrator privilege can exploit this vulnerability to perform remote arbitrary...

7.2CVSS6AI score0.01158EPSS
Exploits0References1
NVD
NVD
added 2023/09/07 8:15 a.m.39 views

CVE-2023-39238

It is identified a format string vulnerability in ASUS RT-AX56U V2. This vulnerability is caused by lacking validation for a specific value within its setiperf3svr.cgi module. A remote attacker with administrator privilege can exploit this vulnerability to perform remote arbitrary code execution,...

7.2CVSS7.1AI score0.01187EPSS
Exploits0References1
Prion
Prion
added 2023/09/07 8:15 a.m.27 views

Format string

It is identified a format string vulnerability in ASUS RT-AX56U V2’s iperf client function API. This vulnerability is caused by lacking validation for a specific value within its setiperf3cli.cgi module. An unauthenticated remote attacker can exploit this vulnerability without privilege to perfor...

7.5CVSS9.6AI score0.01158EPSS
Exploits0References1Affected Software3
Prion
Prion
added 2023/09/07 8:15 a.m.33 views

Format string

It is identified a format string vulnerability in ASUS RT-AX56U V2. This vulnerability is caused by lacking validation for a specific value within its setiperf3svr.cgi module. An unauthenticated remote attacker can exploit this vulnerability without privilege to perform remote arbitrary code...

7.5CVSS9.6AI score0.01187EPSS
Exploits0References1Affected Software3
CVE
CVE
added 2023/09/07 7:25 a.m.2529 views

CVE-2023-39240

CVE-2023-39240 affects ASUS RT-AX56U V2: a format string vulnerability in the iperf client API, caused by insufficient validation in set_iperf3_cli.cgi. A remote attacker with administrator privileges could achieve remote code execution or service disruption. Exploitation details are not provided...

7.2CVSS7.3AI score0.01158EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/09/07 7:18 a.m.22 views

CVE-2023-39239 ASUS RT-AX55、RT-AX56U_V2、RT-AC86U - Format String - 2

It is identified a format string vulnerability in ASUS RT-AX56U V2’s General function API. This vulnerability is caused by lacking validation for a specific value within its apply.cgi module. A remote attacker with administrator privilege can exploit this vulnerability to perform remote arbitrary...

7.2CVSS7.3AI score0.01158EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/09/07 7:18 a.m.16 views

CVE-2023-39239 ASUS RT-AX55、RT-AX56U_V2、RT-AC86U - Format String - 2

It is identified a format string vulnerability in ASUS RT-AX56U V2’s General function API. This vulnerability is caused by lacking validation for a specific value within its apply.cgi module. A remote attacker with administrator privilege can exploit this vulnerability to perform remote arbitrary...

7.2CVSS7.5AI score0.01158EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/09/07 7:10 a.m.18 views

CVE-2023-39238 ASUS RT-AX55、RT-AX56U_V2 - Format String - 1

It is identified a format string vulnerability in ASUS RT-AX56U V2. This vulnerability is caused by lacking validation for a specific value within its setiperf3svr.cgi module. A remote attacker with administrator privilege can exploit this vulnerability to perform remote arbitrary code execution,...

7.2CVSS7.3AI score0.01187EPSS
Exploits0References1
CVE
CVE
added 2023/09/07 7:10 a.m.107 views

CVE-2023-39238

CVE-2023-39238 affects ASUS RT-AX56U V2. The issue is a format string vulnerability in the set_iperf3_svr.cgi module caused by missing input validation. A remote attacker with administrator privileges can trigger remote arbitrary code execution, alter system operation, or disrupt service. Reporte...

7.2CVSS7.3AI score0.01187EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2023/07/21 7:15 a.m.25 views

CVE-2023-35086

It is identified a format string vulnerability in ASUS RT-AX56U V2 & RT-AC86U. This vulnerability is caused by directly using input as a format string when calling syslog in logmessagenormal function, in the dodetwancgi module of httpd. A remote attacker with administrator privilege can exploit...

7.2CVSS7.1AI score0.39705EPSS
Exploits1References1
Prion
Prion
added 2023/07/21 7:15 a.m.27 views

Format string

It is identified a format string vulnerability in ASUS RT-AX56U V2 & RT-AC86U. This vulnerability is caused by directly using input as a format string when calling syslog in logmessagenormal function, in the dodetwancgi module of httpd. An unauthenticated remote attacker without privilege can...

7.5CVSS9.6AI score0.39705EPSS
Exploits1References1Affected Software2
Cvelist
Cvelist
added 2023/07/21 6:32 a.m.23 views

CVE-2023-35086 ASUS RT-AX56U V2 & RT-AC86U - Format String -1

It is identified a format string vulnerability in ASUS RT-AX56U V2 & RT-AC86U. This vulnerability is caused by directly using input as a format string when calling syslog in logmessagenormal function, in the dodetwancgi module of httpd. A remote attacker with administrator privilege can exploit...

7.2CVSS7.3AI score0.39705EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2023/07/17 12:0 a.m.7 views

PT-2023-7593 · Asus · Asus Rt-Ac86U +1

Name of the Vulnerable Software and Affected Versions: ASUS RT-AX56U V2 version 3.0.0.4.386 50460 ASUS RT-AC86U version 3.0.0.4 386 51529 Description: The issue is related to a format string vulnerability in the cm processChangedConfigMsg function of the AiMesh system. This vulnerability is cause...

9.8CVSS9.5AI score0.0089EPSS
Exploits0References8
Rows per page
Query Builder