← Back to CVEs
CVE-2022-26674
CRITICAL9.8
Description
ASUS RT-AX88U has a Format String vulnerability, which allows an unauthenticated remote attacker to write to arbitrary memory address and perform remote arbitrary code execution, arbitrary system operation or disrupt service.
CVE Details
CVSS v3.1 Score9.8
SeverityCRITICAL
CVSS VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Attack VectorNETWORK
ComplexityLOW
Privileges RequiredNONE
User InteractionNONE
Published4/22/2022
Last Modified11/21/2024
Sourcenvd
Honeypot Sightings0
Affected Products
asus:rt-ax88uasus:rt-ax88u_firmware
Weaknesses (CWE)
CWE-134CWE-134
References
https://www.twcert.org.tw/tw/cp-132-6043-0f72c-1.html(twcert@cert.org.tw)
https://www.twcert.org.tw/tw/cp-132-6043-0f72c-1.html(af854a3a-2127-422b-91ae-364da2661108)
IOC Correlations
No correlations recorded
This product uses data from the NVD API but is not endorsed or certified by the NVD.