Denial of Service Vulnerability in ASUS RT-AX3000 Firmware
CVE-2021-3229

7.5HIGH

Key Information:

Vendor: Asus
Status: Rt-ax3000 Firmware
Vendor: CVE Published:; 5 February 2021

Badges

👾 Exploit Exists

What is CVE-2021-3229?

A vulnerability in the firmware of ASUS RT-AX3000 allows an attacker to execute a denial of service attack by causing continuous login errors that disrupt device setup services. This flaw can prevent users from configuring their devices, potentially leading to operational disruptions.

References

https://www.asus.com/us/ASUSWRT/

x_refsource_MISC

https://dlcdnimgs.asus.com/websites/global/productcustomi...

x_refsource_MISC

https://github.com/fullbbadda1208/CVE-2021-3229

x_refsource_MISC

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

🟡
Public PoC available
Feb 7, 2021
👾
Exploit known to exist
Feb 7, 2021
Vulnerability published
Feb 5, 2021
Vulnerability Reserved
Jan 22, 2021

Asus

Badges

What is CVE-2021-3229?

References

CVSS V3.1

Timeline