Rt-ax88u Firmware Security Vulnerabilities and Issues — Rt-ax88u Firmware CVE List

Lucene search

AsusRt-ax88u Firmware

3 matches found

CVE•added 2023/07/31 6:15 a.m.•35 views

CVE-2023-34360

A stored cross-site scripting (XSS) issue was discovered within the Custom User Icons functionality of ASUS RT-AX88U running firmware versions 3.0.0.4.388.23110 and prior. After a remote attacker logging in device with regular user privilege, the remote attacker can perform a Stored Cross-site Scri...

8.2CVSS5.5AI score0.0004EPSS

CVE•added 2023/07/31 5:15 a.m.•28 views

CVE-2023-34358

ASUS RT-AX88U's httpd is subject to an unauthenticated DoS condition. A remote attacker can send a specially crafted request to a device which contains a specific user agent, causing the httpd binary to crash during a string comparison performed within web.c, resulting in a DoS condition.

7.5CVSS7.5AI score0.00268EPSS

CVE•added 2023/07/31 5:15 a.m.•28 views

CVE-2023-34359

ASUS RT-AX88U's httpd is subject to an unauthenticated DoS condition. A remote attacker can send a specially crafted request to the device which causes the httpd binary to crash within the "do_json_decode()" function of ej.c, resulting in a DoS condition.

7.5CVSS7.6AI score0.00265EPSS