CVE-2023-34358

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Jul 31, 2023

Updated: Aug 4, 2023

CWE ID 125

Summary

CVE-2023-34358 refers to a denial-of-service (DoS) vulnerability affecting the ASUS RT-AX88U httpd service. An unauthenticated attacker can exploit this issue by sending a specially crafted request to a device, resulting in a crash of the httpd binary during a string comparison in web.c. This vulnerability allows the attacker to cause a denial-of-service condition, making the device unavailable to its intended users. It is crucial for ASUS users to apply the necessary patches or updates to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Asus Rt-ax88u Firmware

Affected Vendors

ASUS

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/rzabgL
https://www.cve.org/CVERecord?id=CVE-2023-34358
https://nvd.nist.gov/vuln/detail/CVE-2023-34358

Back to Vulnerability Database