CVE-2018-8826

Published: Apr 20, 2018Modified: Nov 21, 2024

9.8

Vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability: 3.9 / Impact: 5.9

Source: NVD

Description

ASUS RT-AC51U, RT-AC58U, RT-AC66U, RT-AC1750, RT-ACRH13, and RT-N12 D1 routers with firmware before 3.0.0.4.380.8228; RT-AC52U B1, RT-AC1200 and RT-N600 routers with firmware before 3.0.0.4.380.10446; RT-AC55U and RT-AC55UHP routers with firmware before 3.0.0.4.382.50276; RT-AC86U and RT-AC2900 routers with firmware before 3.0.0.4.384.20648; and possibly other RT-series routers allow remote attackers to execute arbitrary code via unspecified vectors.

Affected (13)

Products: Asus: Rt Ac51u Firmware, Rt Ac58u Firmware, Rt Ac66u Firmware, Rt Ac1750 Firmware, Rt N12 D1 Firmware, Rt Ac52u B1 Firmware, Rt Ac1200 Firmware, Rt N600 Firmware, Rt Ac55u Firmware, Rt Ac55uhp Firmware, Rt Ac86u Firmware, Rt Acrh13 Firmware, Rt Ac2900 Firmware

13 products

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Asus Rt Ac51u Firmware	Version 3.0.0.4.380.8228

Running on/with	Platform Versions
Asus Rt Ac51u	All versions

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Asus Rt Ac58u Firmware	Version 3.0.0.4.380.8228

Running on/with	Platform Versions
Asus Rt Ac58u	All versions

Configuration C

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Asus Rt Ac66u Firmware	Version 3.0.0.4.380.8228

Running on/with	Platform Versions
Asus Rt Ac66u	All versions

Configuration D

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Asus Rt Ac1750 Firmware	Version 3.0.0.4.380.8228

Running on/with	Platform Versions
Asus Rt Ac1750	All versions

Configuration E

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Asus Rt N12 D1 Firmware	Version 3.0.0.4.380.8228

Running on/with	Platform Versions
Asus Rt N12 D1	All versions

Configuration F

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Asus Rt Ac52u B1 Firmware	Version 3.0.0.4.380.10446

Running on/with	Platform Versions
Asus Rt Ac52u B1	All versions

Configuration G

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Asus Rt Ac1200 Firmware	Version 3.0.0.4.380.10446

Running on/with	Platform Versions
Asus Rt Ac1200	All versions

Configuration H

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Asus Rt N600 Firmware	Version 3.0.0.4.380.10446

Running on/with	Platform Versions
Asus Rt N600	All versions

Configuration I

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Asus Rt Ac55u Firmware	Version 3.0.0.4.382.50276

Running on/with	Platform Versions
Asus Rt Ac55u	All versions

Configuration J

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Asus Rt Ac55uhp Firmware	Version 3.0.0.4.382.50276

Running on/with	Platform Versions
Asus Rt Ac55uhp	All versions

Configuration K

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Asus Rt Ac86u Firmware	Version 3.0.0.4.384.20648

Running on/with	Platform Versions
Asus Rt Ac86u	All versions

Configuration L

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Asus Rt Acrh13 Firmware	Version 3.0.0.4.380.8228

Running on/with	Platform Versions
Asus Rt Acrh13	All versions

Configuration M

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Asus Rt Ac2900 Firmware	Version 3.0.0.4.384.20648

Running on/with	Platform Versions
Asus Rt Ac2900	All versions

Related CWEs

CWE-20

Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References (28)

https://www.asus.com/Networking/RT-AC2900/HelpDesk_BIOS/

Source: cve@mitre.org

Vendor Advisory

https://www.asus.com/Networking/RT-AC52U-B1/HelpDesk_BIOS/

Source: cve@mitre.org

Vendor Advisory

https://www.asus.com/ca-en/Networking/RT-N600/HelpDesk_Download/

Source: cve@mitre.org

Vendor Advisory

https://www.asus.com/sg/Networking/RT-AC58U/HelpDesk_BIOS/

Source: cve@mitre.org

Vendor Advisory

https://www.asus.com/us/Networking/RT-AC1200/HelpDesk_BIOS/

Source: cve@mitre.org

Vendor Advisory

https://www.asus.com/us/Networking/RT-AC1750/HelpDesk_BIOS/

Source: cve@mitre.org

Vendor Advisory

https://www.asus.com/us/Networking/RT-AC86U/HelpDesk_BIOS/

Source: cve@mitre.org

Vendor Advisory

https://www.asus.com/us/Networking/RT-ACRH13/HelpDesk_BIOS/

Source: cve@mitre.org

Vendor Advisory

https://www.asus.com/us/Networking/RTAC66U/HelpDesk_BIOS/

Source: cve@mitre.org

Vendor Advisory

https://www.asus.com/us/Networking/RTN12_D1/HelpDesk_BIOS/

Source: cve@mitre.org

Vendor Advisory

https://www.asus.com/us/Networking/RTN66W/HelpDesk_BIOS/

Source: cve@mitre.org

Vendor Advisory

https://www.asus.com/us/supportonly/RT-AC51U/HelpDesk_BIOS/

Source: cve@mitre.org

Vendor Advisory

https://www.asus.com/us/supportonly/RT-AC55U/HelpDesk_BIOS/

Source: cve@mitre.org

Vendor Advisory

https://www.asus.com/us/supportonly/RT-AC55UHP/HelpDesk_BIOS/

Source: cve@mitre.org

Vendor Advisory

https://www.asus.com/Networking/RT-AC2900/HelpDesk_BIOS/