Remote Command Execution Vulnerability in ASUS Japan WL-330NUL Devices
CVE-2015-7788

7.3HIGH

Key Information:

Vendor
Asus
Status
Wl-330nul Firmware
Vendor
CVE Published:
30 December 2015

Summary

The ASUS Japan WL-330NUL devices, specifically those running firmware versions prior to 3.0.0.42, are susceptible to a remote command execution vulnerability. This security flaw allows unauthorized remote attackers to execute arbitrary commands, potentially compromising the device's integrity and user data. To mitigate this risk, it is critical for users to update their devices to the latest firmware version as recommended by ASUS.

References

http://www.asus.com/jp/News/FX04LE8HN0qBoqFI
x_refsource_CONFIRM
http://jvn.jp/en/jp/JVN34489380/index.html
third-party-advisoryx_refsource_JVN
http://jvndb.jvn.jp/jvndb/JVNDB-2015-000193
third-party-advisoryx_refsource_JVNDB

CVSS V3.1

Score:
7.3
Severity:
HIGH
Confidentiality:
Low
Integrity:
Low
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.