Asus Rt-Ax58U vulnerabilities

CVE-2024-11985 [MEDIUM] CWE-20 CVE-2024-11985: An improper input validation vulnerability leads to device crashes in certain ASUS router models. R An improper input validation vulnerability leads to device crashes in certain ASUS router models. Refer to the '12/03/2024 ASUS Router Improper Input Validation' section on the ASUS Security Advisory for more information.

CVE-2024-3080 [CRITICAL] CWE-287 CVE-2024-3080: Certain ASUS router models have authentication bypass vulnerability, allowing unauthenticated remote Certain ASUS router models have authentication bypass vulnerability, allowing unauthenticated remote attackers to log in the device.

CVE-2024-3079 [HIGH] CWE-121 CVE-2024-3079: Certain models of ASUS routers have buffer overflow vulnerabilities, allowing remote attackers with Certain models of ASUS routers have buffer overflow vulnerabilities, allowing remote attackers with administrative privileges to execute arbitrary commands on the device.

CVE-2024-0401 [HIGH] CWE-78 CVE-2024-0401: ASUS routers supporting custom OpenVPN profiles are vulnerable to a code execution vulnerability. An ASUS routers supporting custom OpenVPN profiles are vulnerable to a code execution vulnerability. An authenticated and remote attacker can execute arbitrary operating system commands by uploading a crafted OVPN profile. Known affected routers include ASUS ExpertWiFi, ASUS RT-AX55, ASUS RT-AX58U, ASUS RT-AC67U, ASUS RT-AC68R, ASUS RT-AC68U, ASUS RT-AX86,

CVE-2021-37910 [LOW] CWE-799 CVE-2021-37910: ASUS routers Wi-Fi protected access protocol (WPA2 and WPA3-SAE) has improper control of Interaction ASUS routers Wi-Fi protected access protocol (WPA2 and WPA3-SAE) has improper control of Interaction frequency vulnerability, an unauthenticated attacker can remotely disconnect other users' connections by sending specially crafted SAE authentication frames.