CVE-2023-39238

CVSS 3.1 Score 7.2 of 10 (high)

Details

Published Sep 7, 2023

Updated: Mar 27, 2024

CWE ID 134

Summary

CVE-2023-39238 is a format string vulnerability affecting the ASUS RT-AX56U V2 router. attackers with administrator privileges can exploit this issue, located in the set_iperf3_svr.cgi module, by supplying malicious input. The lack of validation for specific values allows an attacker to execute arbitrary code, carry out arbitrary system operations, or disrupt services.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

ASUS

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/sHfe2c
https://www.cve.org/CVERecord?id=CVE-2023-39238
https://nvd.nist.gov/vuln/detail/CVE-2023-39238

Back to Vulnerability Database

CVE-2023-39238

CVSS 3.1 Score 7.2 of 10 (high)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations