CVE-2023-28703
published 2023-06-02CVE-2023-28703: ASUS RT-AC86U’s specific cgi function has a stack-based buffer overflow vulnerability due to insufficient validation for network packet header length. A remote…
high7.2CVSS 3.1
AVNACLPRHUINSUCHIHAH
ASUS RT-AC86U’s specific cgi function has a stack-based buffer overflow vulnerability due to insufficient validation for network packet header length. A remote attacker with administrator privileges can exploit this vulnerability to execute arbitrary system commands, disrupt system or terminate service.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| asus | rt-ac86u | — | — |
| asus | rt-ac86u_firmware | — | — |