CVE-2024-3080
published 2024-06-14CVE-2024-3080: Certain ASUS router models have authentication bypass vulnerability, allowing unauthenticated remote attackers to log in the device.
critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EXPLOIT
Certain ASUS router models have authentication bypass vulnerability, allowing unauthenticated remote attackers to log in the device.
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| asus | rt-ac68u | earlier – 3.0.0.4.386_51668 | — |
| asus | rt-ac86u | earlier – 3.0.0.4.386_51915 | — |
| asus | rt-ax57 | earlier – 3.0.0.4.386_52294 | — |
| asus | rt-ax58u | earlier – 3.0.0.4.388_23925 | — |
| asus | rt-ax88u | earlier – 3.0.0.4.388_24198 | — |
| asus | zenwifi_xt8 | earlier – 3.0.0.4.388_24609 | — |
| asus | zenwifi_xt8_v2 | earlier – 3.0.0.4.388_24609 | — |
CVSS provenance
nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
vulncheck9.8CRITICAL