ASUS RT-AC86U - Heap-based buffer overflow

ASUS RT-AC56U’s configuration function has a heap-based buffer overflow vulnerability due to insufficient validation for the decryption parameter length, which allows an unauthenticated LAN attacker to execute arbitrary code, perform arbitrary operations and disrupt service.

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

跨界内存写

ASUS RT-AC56U 缓冲区错误漏洞

ASUS RT-AC56U是中国华硕（ASUS）公司的一款双频 Wi-Fi 路由器。 ASUS RT-AC56U 存在安全漏洞，该漏洞源于解密参数长度验证不充分，未经身份验证的局域网攻击者可以执行任意代码、任意操作和中断服务。

N/A

N/A