Vulnerability Details CVE-2018-5999
An issue was discovered in AsusWRT before 3.0.0.4.384_10007. In the handle_request function in router/httpd/httpd.c, processing of POST requests continues even if authentication fails.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.909
EPSS Ranking 99.6%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 10.0
References
- https://blogs.securiteam.com/index.php/archives/3589
- https://github.com/pedrib/PoC/blob/master/advisories/asuswrt-lan-rce.txt
- https://raw.githubusercontent.com/pedrib/PoC/master/exploits/metasploit/asuswrt_lan_rce.rb
- https://www.exploit-db.com/exploits/43881/
- https://www.exploit-db.com/exploits/44176/
- https://blogs.securiteam.com/index.php/archives/3589
- https://github.com/pedrib/PoC/blob/master/advisories/asuswrt-lan-rce.txt
- https://raw.githubusercontent.com/pedrib/PoC/master/exploits/metasploit/asuswrt_lan_rce.rb
- https://www.exploit-db.com/exploits/43881/
- https://www.exploit-db.com/exploits/44176/
Products affected by CVE-2018-5999
-
cpe:2.3:o:asus:asuswrt:-
-
cpe:2.3:o:asus:asuswrt:3.0.0.4.378
-
cpe:2.3:o:asus:asuswrt:3.0.0.4.380.7743
-
cpe:2.3:o:asus:asuswrt:3.0.0.4.384.20308