62 matches found
EUVD-2023-38439
Malicious code in bioql PyPI...
EUVD-2022-31224
Malicious code in bioql PyPI...
EUVD-2023-38438
Malicious code in bioql PyPI...
EUVD-2022-31223
Malicious code in bioql PyPI...
EUVD-2023-38440
Malicious code in bioql PyPI...
ASUS RT-AX88U Buffer Overflow Vulnerability
The ASUS RT-AX88U is a wireless router from Asus China. A buffer overflow vulnerability exists in ASUS RT-AX88U version v3.0.0.4.38824198, which originates from an application boundary error when handling untrusted input. A remote attacker could exploit this vulnerability to execute arbitrary cod...
CVE-2024-33278
Buffer Overflow vulnerability in ASUS router RT-AX88U with firmware versions v3.0.0.4.38824198 allows a remote attacker to execute arbitrary code via the connectionstatemachine due to improper length validation for the cookie field...
CVE-2024-33278
Buffer Overflow vulnerability in ASUS router RT-AX88U with firmware versions v3.0.0.4.38824198 allows a remote attacker to execute arbitrary code via the connectionstatemachine due to improper length validation for the cookie field...
CVE-2024-0401
CVE-2024-0401 affects multiple ASUS routers that support custom OpenVPN profiles. An authenticated, remote attacker can execute arbitrary OS commands by uploading a crafted OVPN profile, with impact on confidentiality, integrity, and availability per the cited sources. Affected models include: AS...
CVE-2024-0401 ASUS OVPN RCE
ASUS routers supporting custom OpenVPN profiles are vulnerable to a code execution vulnerability. An authenticated and remote attacker can execute arbitrary operating system commands by uploading a crafted OVPN profile. Known affected routers include ASUS ExpertWiFi, ASUS RT-AX55, ASUS RT-AX58U,...
CVE-2023-41349
ASUS router RT-AX88U has a vulnerability of using externally controllable format strings within its Advanced Open VPN function. An authenticated remote attacker can exploit the exported OpenVPN configuration to execute an externally-controlled format string attack, resulting in sensitivity...
Format string
ASUS router RT-AX88U has a vulnerability of using externally controllable format strings within its Advanced Open VPN function. An authenticated remote attacker can exploit the exported OpenVPN configuration to execute an externally-controlled format string attack, resulting in sensitivity...
CVE-2023-41349 ASUS RT-AX88U - externally-controlled format string
ASUS router RT-AX88U has a vulnerability of using externally controllable format strings within its Advanced Open VPN function. An authenticated remote attacker can exploit the exported OpenVPN configuration to execute an externally-controlled format string attack, resulting in sensitivity...
CVE-2023-41349 ASUS RT-AX88U - externally-controlled format string
ASUS router RT-AX88U has a vulnerability of using externally controllable format strings within its Advanced Open VPN function. An authenticated remote attacker can exploit the exported OpenVPN configuration to execute an externally-controlled format string attack, resulting in sensitivity...
CVE-2023-41349
CVE-2023-41349 affects ASUS RT-AX88U routers and involves an externally controllable format string vulnerability in the Advanced OpenVPN function. An authenticated remote attacker can exploit an exported OpenVPN configuration to trigger a format string attack, leading to sensitive information lea...
ASUS RT-AX88U Formatting String Error Vulnerability
The ASUS RT-AX88U is a wireless router from ASUS in China. The ASUS RT-AX88U suffers from a Formatting String Error vulnerability, which stems from a vulnerability in the Advanced Open VPN feature that uses an externally controllable format string, which can be exploited by an attacker with an...
ASUS RT-AX88U web.c Buffer Overflow Vulnerability
The ASUS RT-AX88U is a wireless router from Asus China. The ASUS RT-AX88U suffers from a buffer overflow vulnerability that stems from a failure to check the buffer input size, which can be exploited by a remote attacker to send a specially crafted request to a device that contains a specific use...
ASUS RT-AX88U Cross-Site Scripting Vulnerability (CNVD-2023-63441)
The ASUS RT-AX88U is a wireless router from Asus China. The ASUS RT-AX88U suffers from a cross-site scripting vulnerability that stems from the lack of effective filtering and escaping of user-supplied data by the Custom User Icons feature, which can be exploited by an attacker to perform a store...
ASUS RT-AX88U ej.c Buffer Overflow Vulnerability
The ASUS RT-AX88U is a wireless router from Asus China. The ASUS RT-AX88U suffers from a buffer overflow vulnerability that stems from a failure to check the buffer input size, which can be exploited by a remote attacker who can send a specially crafted request to the device, resulting in a crash...
CVE-2023-34360
A stored cross-site scripting XSS issue was discovered within the Custom User Icons functionality of ASUS RT-AX88U running firmware versions 3.0.0.4.388.23110 and prior. After a remote attacker logging in device with regular user privilege, the remote attacker can perform a Stored Cross-site...