Vulnerabilities > CVE-2018-17020 - Unspecified vulnerability in Asus Gt-Ac5300 Firmware

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

HIGH

network

low complexity

asus

NVD

Published: 2018-09-13

Updated: 2020-08-24

Summary

ASUS GT-AC5300 devices with firmware through 3.0.0.4.384_32738 allow remote attackers to cause a denial of service via a single "GET / HTTP/1.1\r\n" line.

Vulnerable Configurations

Part	Description	Count
OS	Asus Asus GT Ac5300 Firmware 3.0.0.4.384.21140 Asus GT Ac5300 Firmware 3.0.0.4.384.32738 Asus GT Ac5300 Firmware 3.0.0.4.384.32799 Asus GT Ac5300 Firmware 3.0.0.4.384.45149 Asus GT Ac5300 Firmware 3.0.0.4.384.45713 Asus GT Ac5300 Firmware 3.0.0.4.384.45717 Asus GT Ac5300 Firmware 3.0.0.4.384_32738	7
Hardware	Asus Asus GT Ac5300 -	1

References

https://github.com/PAGalaxyLab/VulInfo/blob/master/ASUS/ASUS%20GT-AC5300%20DOS1.MD