CVE-2024-3079 — Stack-based Buffer Overflow in Rt-ac68u

CWE-121 — Stack-based Buffer Overflow3 documents3 sources

Severity

7.2HIGHNVD

EPSS

3.5%

top 12.30%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Asus Rt-ac68u Asus Rt-ac86u Asus Rt-ax57 +4 more

Timeline

PublishedJun 14

Description

Certain models of ASUS routers have buffer overflow vulnerabilities, allowing remote attackers with administrative privileges to execute arbitrary commands on the device.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:HExploitability: 1.2 | Impact: 5.9

Affected Packages7 packages

▶CVEListV5asus/rt-ax57earlier — 3.0.0.4.386_52294

▶CVEListV5asus/rt-ac68uearlier — 3.0.0.4.386_51668

▶CVEListV5asus/rt-ac86uearlier — 3.0.0.4.386_51915

▶CVEListV5asus/rt-ax58uearlier — 3.0.0.4.388_23925

▶CVEListV5asus/rt-ax88uearlier — 3.0.0.4.388_24198

🔴Vulnerability Details

CVEList

ASUS Router - Stack-based Buffer Overflow↗2024-06-14

▶

GHSA

GHSA-95j6-2grv-6h9g: Certain models of ASUS routers have buffer overflow vulnerabilities, allowing remote attackers with administrative privileges to execute arbitrary com↗2024-06-14

▶