Vulnerabilities > CVE-2022-38105 - Unspecified vulnerability in Asus Rt-Ax82U Firmware 3.0.0.4.38649674Ge182230

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
HIGH
Integrity impact
NONE
Availability impact
NONE
network
low complexity
asus

Summary

An information disclosure vulnerability exists in the cm_processREQ_NC opcode of Asus RT-AX82U 3.0.0.4.386_49674-ge182230 router's configuration service. A specially-crafted network packets can lead to a disclosure of sensitive information. An attacker can send a network request to trigger this vulnerability.

Vulnerable Configurations

Part Description Count
OS
Asus
1
Hardware
Asus
1