ASUS RT-AX56U Wi-Fi Router is vulnerable to stack-based... · CVE-2021-44158 · GitHub Advisory Database · GitHub

ASUS RT-AX56U Wi-Fi Router is vulnerable to stack-based...

High severity Unreviewed Published Jan 4, 2022 to the GitHub Advisory Database • Updated Jun 27, 2023

Package

No package listed— Suggest a package

Affected versions

Unknown

Patched versions

Unknown

Description

ASUS RT-AX56U Wi-Fi Router is vulnerable to stack-based buffer overflow due to improper validation for httpd parameter length. An authenticated local area network attacker can launch arbitrary code execution to control the system or disrupt service.

References

Published by the National Vulnerability Database

Jan 3, 2022

Published to the GitHub Advisory Database Jan 4, 2022

Last updated Jun 27, 2023

Severity

High

/ 10

CVSS v3 base metrics

Attack vector

Adjacent

Attack complexity

Low

Privileges required

Low

User interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H