Buffer Overflow Vulnerabilities Affect ASUS Routers

CVE-2024-3079

7.2HIGH

Key Information

Vendor: Asus
Status: Zenwifi Xt8; Zenwifi Xt8 V2; Rt-ax88u; Rt-ax58u
Vendor: CVE Published:; 14 June 2024

Badges

📰 News Worthy

Summary

Certain models of ASUS routers have buffer overflow vulnerabilities, allowing remote attackers with administrative privileges to execute arbitrary commands on the device.

Affected Version(s)

ZenWiFi XT8 <= 3.0.0.4.388_24609

ZenWiFi XT8 V2 <= 3.0.0.4.388_24609

RT-AX88U <= 3.0.0.4.388_24198

News Articles

The Hacker News

CVE-2024-3080 CVE-2024-3079

ASUS Patches Critical Authentication Bypass Flaw in Multiple Router Models

ASUS releases crucial updates for multiple router models to address critical authentication bypass and buffer overflow vulnerabilities. Users urged to

6 months ago

References

https://www.twcert.org.tw/tw/cp-132-7857-5726f-1.html

third-party-advisory

https://www.twcert.org.tw/en/cp-139-7858-3c978-2.html

third-party-advisory

CVSS V3.1

Score:

7.2

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Timeline

📰
First article discovered by The Hacker News
Jun 17, 2024
Vulnerability published
Jun 14, 2024
Vulnerability Reserved
Mar 29, 2024

Collectors

NVD DatabaseMitre Database1 News Article(s)