CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2023-31889
https://notcve.org/view.php?id=CVE-2023-31889
29 Apr 2024 — An issue discovered in httpd in ASUS RT-AC51U with firmware version up to and including 3.0.0.4.380.8591 allows local attackers to cause a denial of service via crafted GET request. Un problema descubierto en httpd en ASUS RT-AC51U con una versión de firmware hasta 3.0.0.4.380.8591 incluida permite a atacantes locales provocar una denegación de servicio mediante una solicitud GET manipulada. • https://gitlab.com/donnm/cves/-/blob/master/dos_rtac51u_httpd.md • CWE-400: Uncontrolled Resource Consumption •
CVSS: 5.3EPSS: 0%CPEs: 2EXPL: 0CVE-2018-8878
https://notcve.org/view.php?id=CVE-2018-8878
27 Feb 2020 — Information disclosure in Asuswrt-Merlin firmware for ASUS devices older than 384.4 and ASUS firmware before 3.0.0.4.382.50470 for devices allows remote attackers to acquire information on internal network devices' hostnames and MAC addresses by reading the custom_id variable on the blocking.asp page. Una divulgación de información en Asuswrt-Merlin firmware para dispositivos ASUS versiones anteriores a 384.4 y ASUS versiones de firmware anteriores a 3.0.0.4.382.50470, para dispositivos permite a atacantes ... • https://github.com/outofhere/Research/blob/master/2018/Asus/cve_notes.md • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 5.3EPSS: 0%CPEs: 2EXPL: 0CVE-2018-8877
https://notcve.org/view.php?id=CVE-2018-8877
27 Feb 2020 — Information disclosure in Asuswrt-Merlin firmware for ASUS devices older than 384.4 and ASUS firmware before 3.0.0.4.382.50470 for devices allows remote attackers to acquire information on internal network IP address ranges by reading the new_lan_ip variable on the error_page.htm page. Una divulgación de información en Asuswrt-Merlin firmware para dispositivos ASUS versiones de firmware anteriores a 384.4 y ASUS versiones de firmware anteriores a 3.0.0.4.382.50470, para dispositivos permite a atacantes remo... • https://github.com/outofhere/Research/blob/master/2018/Asus/cve_notes.md • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •