Описание
ASUS router RT-AX88U has a vulnerability of using externally controllable format strings within its Advanced Open VPN function. An authenticated remote attacker can exploit the exported OpenVPN configuration to execute an externally-controlled format string attack, resulting in sensitivity information leakage, or forcing the device to reset and permanent denial of service.
Ссылки
- Third Party Advisory
- Third Party Advisory
Уязвимые конфигурации
Одновременно
EPSS
8.8 High
CVSS3
Дефекты
Связанные уязвимости
ASUS router RT-AX88U has a vulnerability of using externally controllable format strings within its Advanced Open VPN function. An authenticated remote attacker can exploit the exported OpenVPN configuration to execute an externally-controlled format string attack, resulting in sensitivity information leakage, or forcing the device to reset and permanent denial of service.
Уязвимость функции Advanced Open VPN микропрограммного обеспечения маршрутизаторов Wi-Fi ASUS RT-AX88U, позволяющая нарушителю получить несанкционированный доступ к защищаемой информации и выполнить произвольный код
EPSS
8.8 High
CVSS3