9 μΙηΌ³΅@]ΪΦ~ (ε) 2023/09/07 02:29:28
ASUS routers vulnerable to critical remote code execution flaws
https://www.bleepingcomputer.com/news/security/asus-routers-vulnerable-to-critical-remote-code-execution-flaws/
1. CVE-2023-39238: Lack of proper verification of the input format string on the iperf-related API module eser_iperf3_svr.cgif.
2. CVE-2023-39239: Lack of proper verification of the input format string in the API of the general setting function.
3. CVE-2023-39240: Lack of proper verification of the input format string on the iperf-related API module eser_iperf3_cli.cgif.