← Back

Asus

asus

272 CVEs • 897 products

Products (897)

Click to collapse
Toggle
Rt Ac86u Firmware
rt-ac86u_firmware
19 CVEs
Asmb8 Ikvm Firmware
asmb8-ikvm_firmware
19 CVEs
Z10pr D16 Firmware
z10pr-d16_firmware
18 CVEs
Z10pe D16 Ws Firmware
z10pe-d16_ws_firmware
18 CVEs
Asmb9 Ikvm Firmware
asmb9-ikvm_firmware
17 CVEs
Rs720a E9 Rs24 E Firmware
rs720a-e9-rs24-e_firmware
17 CVEs
Rs700a E9 Rs4 Firmware
rs700a-e9-rs4_firmware
17 CVEs
Rs700 E9 Rs4 Firmware
rs700-e9-rs4_firmware
17 CVEs
Esc4000 G4x Firmware
esc4000_g4x_firmware
17 CVEs
Rs700 E9 Rs12 Firmware
rs700-e9-rs12_firmware
17 CVEs
Rs100 E10 Pi2 Firmware
rs100-e10-pi2_firmware
17 CVEs
Rs300 E10 Ps4 Firmware
rs300-e10-ps4_firmware
17 CVEs
Rs300 E10 Rs4 Firmware
rs300-e10-rs4_firmware
17 CVEs
Rs500a E9 Ps4 Firmware
rs500a-e9-ps4_firmware
17 CVEs
Rs500a E9 Rs4 Firmware
rs500a-e9-rs4_firmware
17 CVEs
Rs500a E9 Rs4 U Firmware
rs500a-e9_rs4_u_firmware
17 CVEs
E700 G4 Firmware
e700_g4_firmware
17 CVEs
Ws C422 Pro/se Firmware
ws_c422_pro/se_firmware
17 CVEs
Ws X299 Pro/se Firmware
ws_x299_pro/se_firmware
17 CVEs
Z11pa U12 Firmware
z11pa-u12_firmware
17 CVEs
Z11pa U12/10g 2s Firmware
z11pa-u12/10g-2s_firmware
17 CVEs
Knpa U16 Firmware
knpa-u16_firmware
17 CVEs
Esc4000 Dhd G4 Firmware
esc4000_dhd_g4_firmware
17 CVEs
Esc4000 G4 Firmware
esc4000_g4_firmware
17 CVEs
Rs720q E9 Rs24 S Firmware
rs720q-e9-rs24-s_firmware
17 CVEs
Rs720q E9 Rs8 Firmware
rs720q-e9-rs8_firmware
17 CVEs
Rs720q E9 Rs8 S Firmware
rs720q-e9-rs8-s_firmware
17 CVEs
Z11pa D8 Firmware
z11pa-d8_firmware
17 CVEs
Z11pa D8c Firmware
z11pa-d8c_firmware
17 CVEs
Rs720 E9 Rs24 U Firmware
rs720-e9-rs24-u_firmware
17 CVEs
Rs720 E9 Rs8 G Firmware
rs720-e9-rs8-g_firmware
17 CVEs
Rs500 E9 Ps4 Firmware
rs500-e9-ps4_firmware
17 CVEs
Pro E800 G4 Firmware
pro_e800_g4_firmware
17 CVEs
Rs500 E9 Rs4 Firmware
rs500-e9-rs4_firmware
17 CVEs
Rs500 E9 Rs4 U Firmware
rs500-e9-rs4-u_firmware
17 CVEs
Rs520 E9 Rs12 E Firmware
rs520-e9-rs12-e_firmware
17 CVEs
Rs520 E9 Rs8 Firmware
rs520-e9-rs8_firmware
17 CVEs
Esc8000 G4 Firmware
esc8000_g4_firmware
17 CVEs
Esc8000 G4/10g Firmware
esc8000_g4/10g_firmware
17 CVEs
Rs720 E9 Rs12 E Firmware
rs720-e9-rs12-e_firmware
17 CVEs
Ws C621e Sage Firmware
ws_c621e_sage_firmware
17 CVEs
Rs500a E10 Ps4 Firmware
rs500a-e10-ps4_firmware
17 CVEs
Rs500a E10 Rs4 Firmware
rs500a-e10-rs4_firmware
17 CVEs
Rs700a E9 Rs12v2 Firmware
rs700a-e9-rs12v2_firmware
17 CVEs
Rs700a E9 Rs4v2 Firmware
rs700a-e9-rs4v2_firmware
17 CVEs
Rs720a E9 Rs12v2 Firmware
rs720a-e9-rs12v2_firmware
17 CVEs
Rs720a E9 Rs24v2 Firmware
rs720a-e9-rs24v2_firmware
17 CVEs
Z11pr D16 Firmware
z11pr-d16_firmware
17 CVEs
Rt Ac68u Firmware
rt-ac68u_firmware
14 CVEs
Rt Ax55 Firmware
rt-ax55_firmware
14 CVEs
Rt Ax56u Firmware
rt-ax56u_firmware
12 CVEs
Rt Ac66u Firmware
rt-ac66u_firmware
11 CVEs
Rt Ax88u Firmware
rt-ax88u_firmware
11 CVEs
Asuswrt
asuswrt
10 CVEs
Rt N56u Firmware
rt-n56u_firmware
9 CVEs
Rt Ax82u Firmware
rt-ax82u_firmware
8 CVEs
Rt Ac3200 Firmware
rt-ac3200_firmware
7 CVEs
Hg100 Firmware
hg100_firmware
7 CVEs
Rt Ax3000 Firmware
rt-ax3000_firmware
7 CVEs
Rt Ax56u V2 Firmware
rt-ax56u_v2_firmware
7 CVEs
Rt Ac87u Firmware
rt-ac87u_firmware
6 CVEs
Rt Ac1750 Firmware
rt-ac1750_firmware
6 CVEs
Rt Ax86u Firmware
rt-ax86u_firmware
6 CVEs
Rt Ax58u Firmware
rt-ax58u_firmware
6 CVEs
Rt N66u Firmware
rt-n66u_firmware
5 CVEs
Rt Ac68u
rt-ac68u
5 CVEs
Dsl N14u B1 Firmware
dsl-n14u-b1_firmware
5 CVEs
Rt Ac88u Firmware
rt-ac88u_firmware
5 CVEs
Rt Ac58u Firmware
rt-ac58u_firmware
5 CVEs
Gt Ac5300 Firmware
gt-ac5300_firmware
5 CVEs
Zenfone 4 Selfie Firmware
zenfone_4_selfie_firmware
5 CVEs
Rt Ax68u Firmware
rt-ax68u_firmware
5 CVEs
Rt N56u
rt-n56u
4 CVEs
Wl 330nul Firmware
wl-330nul_firmware
4 CVEs
Rt Ac53 Firmware
rt-ac53_firmware
4 CVEs
Rt Ac2900 Firmware
rt-ac2900_firmware
4 CVEs
Rt Ac5300 Firmware
rt-ac5300_firmware
4 CVEs
Zenfone 3 Max Firmware
zenfone_3_max_firmware
4 CVEs
Rt Ac1900p Firmware
rt-ac1900p_firmware
4 CVEs
Rt Ax92u Firmware
rt-ax92u_firmware
4 CVEs
Rt N66u
rt-n66u
3 CVEs
Rt N16 Firmware
rt-n16_firmware
3 CVEs
Rt Ac56s Firmware
rt-ac56s_firmware
3 CVEs
Dsl N10s Firmware
dsl-n10s_firmware
3 CVEs
Dsl N12e C1 Firmware
dsl-n12e_c1_firmware
3 CVEs
Dsl N17u Firmware
dsl-n17u_firmware
3 CVEs
Rt Ac1900 Firmware
rt-ac1900_firmware
3 CVEs
Rt Ac3100 Firmware
rt-ac3100_firmware
3 CVEs
Rt Ac51u Firmware
rt-ac51u_firmware
3 CVEs
Rt Ac52u B1 Firmware
rt-ac52u_b1_firmware
3 CVEs
Aura Sync Firmware
aura_sync_firmware
3 CVEs
Zenfone 5q Firmware
zenfone_5q_firmware
3 CVEs
Zenfone Ar Firmware
zenfone_ar_firmware
3 CVEs
Mw100 Firmware
mw100_firmware
3 CVEs
Ws 101 Firmware
ws-101_firmware
3 CVEs
Ts 101 Firmware
ts-101_firmware
3 CVEs
As 101 Firmware
as-101_firmware
3 CVEs
Ms 101 Firmware
ms-101_firmware
3 CVEs
Dl 101 Firmware
dl-101_firmware
3 CVEs
Rt N53 Firmware
rt-n53_firmware
3 CVEs

CVEs (272)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2021-28183
1Asus
3Asmb8 Ikvm Firmware
Z10pe D16 Ws FirmwareZ10pr D16 Firmware
Nov 21, 2024
Apr 6, 2021
N/A· v4
4.9 MEDIUM· v3
4.0 MEDIUM· v2
The specific function in ASUS BMC’s firmware Web management page (Web License configuration setting) does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the priv...Show more
The specific function in ASUS BMC’s firmware Web management page (Web License configuration setting) does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote attackers use the leakage to abnormally terminate the Web service.Show less
CVE-2021-28182
1Asus
3Asmb8 Ikvm Firmware
Z10pe D16 Ws FirmwareZ10pr D16 Firmware
Nov 21, 2024
Apr 6, 2021
N/A· v4
4.9 MEDIUM· v3
4.0 MEDIUM· v2
The Web Service configuration function in ASUS BMC’s firmware Web management page does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission,...Show more
The Web Service configuration function in ASUS BMC’s firmware Web management page does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote attackers use the leakage to abnormally terminate the Web service.Show less
CVE-2021-28181
1Asus
3Asmb8 Ikvm Firmware
Z10pe D16 Ws FirmwareZ10pr D16 Firmware
Nov 21, 2024
Apr 6, 2021
N/A· v4
4.9 MEDIUM· v3
4.0 MEDIUM· v2
The specific function in ASUS BMC’s firmware Web management page (Remote video configuration setting) does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the pri...Show more
The specific function in ASUS BMC’s firmware Web management page (Remote video configuration setting) does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote attackers use the leakage to abnormally terminate the Web service.Show less
CVE-2021-28180
1Asus
3Asmb8 Ikvm Firmware
Z10pe D16 Ws FirmwareZ10pr D16 Firmware
Nov 21, 2024
Apr 6, 2021
N/A· v4
4.9 MEDIUM· v3
4.0 MEDIUM· v2
The specific function in ASUS BMC’s firmware Web management page (Audit log configuration setting) does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privil...Show more
The specific function in ASUS BMC’s firmware Web management page (Audit log configuration setting) does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote attackers use the leakage to abnormally terminate the Web service.Show less
CVE-2021-28179
1Asus
3Asmb8 Ikvm Firmware
Z10pe D16 Ws FirmwareZ10pr D16 Firmware
Nov 21, 2024
Apr 6, 2021
N/A· v4
4.9 MEDIUM· v3
4.0 MEDIUM· v2
The specific function in ASUS BMC’s firmware Web management page (Media support configuration setting) does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the pr...Show more
The specific function in ASUS BMC’s firmware Web management page (Media support configuration setting) does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote attackers use the leakage to abnormally terminate the Web service.Show less
CVE-2021-28178
1Asus
3Asmb8 Ikvm Firmware
Z10pe D16 Ws FirmwareZ10pr D16 Firmware
Nov 21, 2024
Apr 6, 2021
N/A· v4
4.9 MEDIUM· v3
4.0 MEDIUM· v2
The UEFI configuration function in ASUS BMC’s firmware Web management page does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote...Show more
The UEFI configuration function in ASUS BMC’s firmware Web management page does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote attackers use the leakage to abnormally terminate the Web service.Show less
CVE-2021-28177
1Asus
3Asmb8 Ikvm Firmware
Z10pe D16 Ws FirmwareZ10pr D16 Firmware
Nov 21, 2024
Apr 6, 2021
N/A· v4
4.9 MEDIUM· v3
4.0 MEDIUM· v2
The LDAP configuration function in ASUS BMC’s firmware Web management page does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote...Show more
The LDAP configuration function in ASUS BMC’s firmware Web management page does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote attackers use the leakage to abnormally terminate the Web service.Show less
CVE-2021-28176
1Asus
3Asmb8 Ikvm Firmware
Z10pe D16 Ws FirmwareZ10pr D16 Firmware
Nov 21, 2024
Apr 6, 2021
N/A· v4
4.9 MEDIUM· v3
4.0 MEDIUM· v2
The DNS configuration function in ASUS BMC’s firmware Web management page does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote a...Show more
The DNS configuration function in ASUS BMC’s firmware Web management page does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote attackers use the leakage to abnormally terminate the Web service.Show less
CVE-2021-28175
1Asus
3Asmb8 Ikvm Firmware
Z10pe D16 Ws FirmwareZ10pr D16 Firmware
Nov 21, 2024
Apr 6, 2021
N/A· v4
4.9 MEDIUM· v3
4.0 MEDIUM· v2
The Radius configuration function in ASUS BMC’s firmware Web management page does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remot...Show more
The Radius configuration function in ASUS BMC’s firmware Web management page does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote attackers use the leakage to abnormally terminate the Web service.Show less
CVE-2021-26943
1Asus
1Ux360ca Bios
Nov 21, 2024
Mar 31, 2021
N/A· v4
8.2 HIGH· v3
7.2 HIGH· v2
The UX360CA BIOS through 303 on ASUS laptops allow an attacker (with the ring 0 privilege) to overwrite nearly arbitrary physical memory locations, including SMRAM, and execute arbitrary code in the SMM (issue 3 of 3).
CVE-2021-27404
1Asus
1Askey Rtf8115vw Firmware
Nov 21, 2024
Feb 19, 2021
N/A· v4
6.1 MEDIUM· v3
5.8 MEDIUM· v2
Askey RTF8115VW BR_SV_g11.11_RTF_TEF001_V6.54_V014 devices allow injection of a Host HTTP header.
CVE-2021-27403
1Asus
1Askey Rtf8115vw Firmware
Nov 21, 2024
Feb 19, 2021
N/A· v4
6.1 MEDIUM· v3
4.3 MEDIUM· v2
Askey RTF8115VW BR_SV_g11.11_RTF_TEF001_V6.54_V014 devices allow cgi-bin/te_acceso_router.cgi curWebPage XSS.
CVE-2021-3229
1Asus
1Rt Ax3000 Firmware
Nov 21, 2024
Feb 5, 2021
N/A· v4
7.5 HIGH· v3
7.8 HIGH· v2
Denial of service in ASUSWRT ASUS RT-AX3000 firmware versions 3.0.0.4.384_10177 and earlier versions allows an attacker to disrupt the use of device setup services via continuous login error.
CVE-2020-36109
1Asus
1Rt Ax86u Firmware
Nov 21, 2024
Feb 1, 2021
N/A· v4
9.8 CRITICAL· v3
7.5 HIGH· v2
ASUS RT-AX86U router firmware below version under 9.0.0.4_386 has a buffer overflow in the blocking_request.cgi function of the httpd module that can cause code execution when an attacker constructs malicious data.
CVE-2021-3166
1Asus
1Dsl N14u B1 Firmware
Nov 21, 2024
Jan 18, 2021
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
An issue was discovered on ASUS DSL-N14U-B1 1.1.2.3_805 devices. An attacker can upload arbitrary file content as a firmware update when the filename Settings_DSL-N14U-B1.trx is used. Once this file is loaded, shutdown m...Show more
An issue was discovered on ASUS DSL-N14U-B1 1.1.2.3_805 devices. An attacker can upload arbitrary file content as a firmware update when the filename Settings_DSL-N14U-B1.trx is used. Once this file is loaded, shutdown measures on a wide range of services are triggered as if it were a real update, resulting in a persistent outage of those services.Show less
CVE-2020-35219
1Asus
1Dsl N17u Firmware
Nov 21, 2024
Jan 4, 2021
N/A· v4
9.8 CRITICAL· v3
10.0 HIGH· v2
The ASUS DSL-N17U modem with firmware 1.1.0.2 allows attackers to access the admin interface by changing the admin password without authentication via a POST request to Advanced_System_Content.asp with the uiViewTools_us...Show more
The ASUS DSL-N17U modem with firmware 1.1.0.2 allows attackers to access the admin interface by changing the admin password without authentication via a POST request to Advanced_System_Content.asp with the uiViewTools_username=admin&uiViewTools_Password= and uiViewTools_PasswordConfirm= substrings.Show less
CVE-2020-29656
1Asus
1Rt Ac88u Firmware
Nov 21, 2024
Dec 9, 2020
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
An information disclosure vulnerability exists in RT-AC88U Download Master before 3.1.0.108. A direct access to /downloadmaster/dm_apply.cgi?action_mode=initial&download_type=General&special_cgi=get_language makes it pos...Show more
An information disclosure vulnerability exists in RT-AC88U Download Master before 3.1.0.108. A direct access to /downloadmaster/dm_apply.cgi?action_mode=initial&download_type=General&special_cgi=get_language makes it possible to reach "unknown functionality" in a "known to be easy" manner via an unspecified "public exploit."Show less
CVE-2020-29655
1Asus
1Rt Ac88u Firmware
Nov 21, 2024
Dec 9, 2020
N/A· v4
7.5 HIGH· v3
5.0 MEDIUM· v2
An injection vulnerability exists in RT-AC88U Download Master before 3.1.0.108. Accessing Main_Login.asp?flag=1&productname=FOOBAR&url=/downloadmaster/task.asp will redirect to the login site, which will show the value o...Show more
An injection vulnerability exists in RT-AC88U Download Master before 3.1.0.108. Accessing Main_Login.asp?flag=1&productname=FOOBAR&url=/downloadmaster/task.asp will redirect to the login site, which will show the value of the parameter productname within the title. An attacker might be able to influence the appearance of the login page, aka text injection.Show less
CVE-2020-15499
1Asus
1Rt Ac1900p Firmware
Nov 21, 2024
Aug 26, 2020
N/A· v4
6.1 MEDIUM· v3
4.3 MEDIUM· v2
An issue was discovered on ASUS RT-AC1900P routers before 3.0.0.4.385_20253. They allow XSS via spoofed Release Notes on the Firmware Upgrade page.
CVE-2020-15498
1Asus
1Rt Ac1900p Firmware
Nov 21, 2024
Aug 26, 2020
N/A· v4
5.9 MEDIUM· v3
4.3 MEDIUM· v2
An issue was discovered on ASUS RT-AC1900P routers before 3.0.0.4.385_20253. The router accepts an arbitrary server certificate for a firmware update. The culprit is the --no-check-certificate option passed to wget tool...Show more
An issue was discovered on ASUS RT-AC1900P routers before 3.0.0.4.385_20253. The router accepts an arbitrary server certificate for a firmware update. The culprit is the --no-check-certificate option passed to wget tool used to download firmware update files.Show less