Buffer Overflow Vulnerabilities Affect ASUS Routers
CVE-2024-3079

7.2HIGH

Key Information:

Vendor: Asus
Status: Zenwifi Xt8; Zenwifi Xt8 V2; Rt-ax88u; Rt-ax58u
Vendor: CVE Published:; 14 June 2024

Badges

📰 News Worthy

What is CVE-2024-3079?

Certain models of ASUS routers exhibit buffer overflow vulnerabilities, which enable remote attackers with administrative access to execute arbitrary commands on the device. This vulnerability can severely compromise the security of the routers and the network they serve, allowing unauthorized access and potential control of connected devices.

Affected Version(s)

RT-AC68U earlier <= 3.0.0.4.386_51668

RT-AC86U earlier <= 3.0.0.4.386_51915

RT-AX57 earlier <= 3.0.0.4.386_52294

News Articles

The Hacker News

CVE-2024-3080 CVE-2024-3079

ASUS Patches Critical Authentication Bypass Flaw in Multiple Router Models

ASUS releases crucial updates for multiple router models to address critical authentication bypass and buffer overflow vulnerabilities. Users urged to

References

https://www.twcert.org.tw/tw/cp-132-7857-5726f-1.html

third-party-advisory

https://www.twcert.org.tw/en/cp-139-7858-3c978-2.html

third-party-advisory

CVSS V3.1

Score:

7.2

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

📰
First article discovered by The Hacker News
Jun 17, 2024
Vulnerability published
Jun 14, 2024
Vulnerability Reserved
Mar 29, 2024

Asus

Badges

What is CVE-2024-3079?

Affected Version(s)

News Articles

ASUS Patches Critical Authentication Bypass Flaw in Multiple Router Models

References

CVSS V3.1

Timeline