ASUS Router Authentication Bypass Vulnerability Allows Unauthorized Access
CVE-2024-3080

9.8CRITICAL

Key Information:

Vendor
Asus
Status
Zenwifi Xt8
Zenwifi Xt8 V2
Rt-ax88u
Rt-ax58u
Vendor
CVE Published:
14 June 2024

Badges

📈 Score: 854📰 News Worthy

What is CVE-2024-3080?

CVE-2024-3080 is a vulnerability found in certain ASUS router models that allows unauthorized access due to an authentication bypass issue. This flaw permits unauthenticated remote attackers to log into the device, which can lead to a range of security breaches. Given the critical role that routers play in network security and connectivity, this vulnerability poses a significant risk to organizations relying on these devices for their digital infrastructure.

Technical Details

This vulnerability arises from a weakness in the authentication mechanism of certain ASUS router models. It enables attackers to bypass standard login processes, granting them access to the router's management interface without needing valid credentials. This type of vulnerability is particularly concerning as it allows for remote exploitation, meaning attackers do not need physical access to the affected devices to conduct their malicious activities.

Potential Impact of CVE-2024-3080

  1. Unauthorized Network Access: The primary risk associated with this vulnerability is that attackers can gain unrestricted access to the router settings, potentially compromising the entire network that relies on the affected device.

  2. Data Exfiltration and Manipulation: Successful exploitation may allow adversaries to intercept and manipulate network traffic, leading to data theft or unauthorized changes to network configurations that could impact services and user privacy.

  3. Increased Risk of Further Attacks: By gaining administrative control over the router, attackers can use it as a launching point for additional intrusions into connected devices, increasing the overall attack surface and enabling further malicious activities within the organization's network.

Affected Version(s)

RT-AC68U earlier <= 3.0.0.4.386_51668

RT-AC86U earlier <= 3.0.0.4.386_51915

RT-AX57 earlier <= 3.0.0.4.386_52294

News Articles

favicon imageThe Stack

Record DDoS attack: Finance, telco firms targeted

Financial firms, telcos among those targeted, as home routers hacked to deliver a record DDoS attack that hit highs of 3.8 Tbps says Cloudflare.

4 months ago

favicon imageThe Hacker News

ASUS Patches Critical Authentication Bypass Flaw in Multiple Router Models

ASUS releases crucial updates for multiple router models to address critical authentication bypass and buffer overflow vulnerabilities. Users urged to

8 months ago

References

https://www.twcert.org.tw/tw/cp-132-7859-0e104-1.html
third-party-advisory
https://www.twcert.org.tw/en/cp-139-7860-760b1-2.html
third-party-advisory

CVSS V3.1

Score:
9.8
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • 📰

    First article discovered by The Hacker News

  • Vulnerability published

  • Vulnerability Reserved

.