Lucene search

[email protected]CVE-2014-2719

HistoryApr 22, 2014 - 1:06 p.m.

CVE-2014-2719

2014-04-2213:06:29

CWE-200

[email protected]

web.nvd.nist.gov

asus

rt series

routers

firmware

security

vulnerability

cve-2014-2719

6.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:S/C:C/I:N/A:N

6.6 Medium

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

54.0%

JSON

Advanced_System_Content.asp in the ASUS RT series routers with firmware before 3.0.0.4.374.5517, when an administrator session is active, allows remote authenticated users to obtain the administrator user name and password by reading the source code.

Affected configurations

NVD

Node

asusrt-ac66u_firmwareMatch3.0.0.4.140

asusrt-ac66u_firmwareMatch3.0.0.4.220

asusrt-ac66u_firmwareMatch3.0.0.4.246

asusrt-ac66u_firmwareMatch3.0.0.4.260

asusrt-ac66u_firmwareMatch3.0.0.4.270

asusrt-ac66u_firmwareMatch3.0.0.4.354

asusrt-ac68u_firmwareMatch3.0.0.4.374.4755

asusrt-ac68u_firmwareMatch3.0.0.4.374_4561

asusrt-ac68u_firmwareMatch3.0.0.4.374_4887

asusrt-n10e_firmwareMatch2.0.0.7

asusrt-n10e_firmwareMatch2.0.0.10

asusrt-n10e_firmwareMatch2.0.0.16

asusrt-n10e_firmwareMatch2.0.0.19

asusrt-n10e_firmwareMatch2.0.0.20

asusrt-n10e_firmwareMatch2.0.0.24

asusrt-n10e_firmwareMatch2.0.0.25

asusrt-n14u_firmwareMatch3.0.0.4.322

asusrt-n14u_firmwareMatch3.0.0.4.356

asusrt-n16_firmwareMatch1.0.1.9

asusrt-n16_firmwareMatch1.0.2.3

asusrt-n16_firmwareMatch3.0.0.3.108

asusrt-n16_firmwareMatch3.0.0.3.162

asusrt-n16_firmwareMatch3.0.0.3.178

asusrt-n16_firmwareMatch3.0.0.4.220

asusrt-n16_firmwareMatch3.0.0.4.246

asusrt-n16_firmwareMatch3.0.0.4.260

asusrt-n16_firmwareMatch3.0.0.4.354

asusrt-n16_firmwareMatch7.0.2.38b

asusrt-n56u_firmwareMatch1.0.1.4

asusrt-n56u_firmwareMatch1.0.1.4o

asusrt-n56u_firmwareMatch1.0.1.7c

asusrt-n56u_firmwareMatch1.0.1.7f

asusrt-n56u_firmwareMatch1.0.1.8j

asusrt-n56u_firmwareMatch1.0.1.8l

asusrt-n56u_firmwareMatch1.0.1.8n

asusrt-n56u_firmwareMatch3.0.0.4.318

asusrt-n56u_firmwareMatch3.0.0.4.334

asusrt-n56u_firmwareMatch3.0.0.4.342

asusrt-n56u_firmwareMatch3.0.0.4.360

asusrt-n56u_firmwareMatch7.0.1.21

asusrt-n56u_firmwareMatch7.0.1.32

asusrt-n56u_firmwareMatch8.1.1.4

asusrt-n65u_firmwareMatch3.0.0.3.134

asusrt-n65u_firmwareMatch3.0.0.3.176

asusrt-n65u_firmwareMatch3.0.0.4.260

asusrt-n65u_firmwareMatch3.0.0.4.334

asusrt-n65u_firmwareMatch3.0.0.4.342

asusrt-n65u_firmwareMatch3.0.0.4.346

asusrt-n66u_firmwareMatch3.0.0.4.272

asusrt-n66u_firmwareMatch3.0.0.4.370

AND

asusrt-ac68uMatch-

Node

t-mobiletm-ac1900Match3.0.0.4.376_3169

CPENameOperatorVersion
asus:rt-ac66u_firmwareasus rt-ac66u firmwareeq3.0.0.4.140
asus:rt-ac66u_firmwareasus rt-ac66u firmwareeq3.0.0.4.220
asus:rt-ac66u_firmwareasus rt-ac66u firmwareeq3.0.0.4.246
asus:rt-ac66u_firmwareasus rt-ac66u firmwareeq3.0.0.4.260
asus:rt-ac66u_firmwareasus rt-ac66u firmwareeq3.0.0.4.270
asus:rt-ac66u_firmwareasus rt-ac66u firmwareeq3.0.0.4.354
asus:rt-ac68u_firmwareasus rt-ac68u firmwareeq3.0.0.4.374.4755
asus:rt-ac68u_firmwareasus rt-ac68u firmwareeq3.0.0.4.374_4561
asus:rt-ac68u_firmwareasus rt-ac68u firmwareeq3.0.0.4.374_4887
asus:rt-n10e_firmwareasus rt-n10e firmwareeq2.0.0.7

CPE	Name	Operator	Version
asus:rt-ac66u_firmware	asus rt-ac66u firmware	eq	3.0.0.4.140
asus:rt-ac66u_firmware	asus rt-ac66u firmware	eq	3.0.0.4.220
asus:rt-ac66u_firmware	asus rt-ac66u firmware	eq	3.0.0.4.246
asus:rt-ac66u_firmware	asus rt-ac66u firmware	eq	3.0.0.4.260
asus:rt-ac66u_firmware	asus rt-ac66u firmware	eq	3.0.0.4.270
asus:rt-ac66u_firmware	asus rt-ac66u firmware	eq	3.0.0.4.354
asus:rt-ac68u_firmware	asus rt-ac68u firmware	eq	3.0.0.4.374.4755
asus:rt-ac68u_firmware	asus rt-ac68u firmware	eq	3.0.0.4.374_4561
asus:rt-ac68u_firmware	asus rt-ac68u firmware	eq	3.0.0.4.374_4887
asus:rt-n10e_firmware	asus rt-n10e firmware	eq	2.0.0.7