Vulnerabilities > Asus > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-04-06 | CVE-2021-28179 | Classic Buffer Overflow vulnerability in Asus products The specific function in ASUS BMC’s firmware Web management page (Media support configuration setting) does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. | 4.0 |
| 2021-04-06 | CVE-2021-28178 | Classic Buffer Overflow vulnerability in Asus products The UEFI configuration function in ASUS BMC’s firmware Web management page does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. | 4.0 |
| 2021-04-06 | CVE-2021-28177 | Classic Buffer Overflow vulnerability in Asus products The LDAP configuration function in ASUS BMC’s firmware Web management page does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. | 4.0 |
| 2021-04-06 | CVE-2021-28176 | Classic Buffer Overflow vulnerability in Asus products The DNS configuration function in ASUS BMC’s firmware Web management page does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. | 4.0 |
| 2021-04-06 | CVE-2021-28175 | Classic Buffer Overflow vulnerability in Asus products The Radius configuration function in ASUS BMC’s firmware Web management page does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. | 4.0 |
| 2021-02-19 | CVE-2021-27404 | Open Redirect vulnerability in Asus Askey Rtf8115Vw Firmware Brsvg11.11Rtftef001V6.54V014 Askey RTF8115VW BR_SV_g11.11_RTF_TEF001_V6.54_V014 devices allow injection of a Host HTTP header. | 5.8 |
| 2021-02-19 | CVE-2021-27403 | Cross-site Scripting vulnerability in Asus Askey Rtf8115Vw Firmware Brsvg11.11Rtftef001V6.54V014 Askey RTF8115VW BR_SV_g11.11_RTF_TEF001_V6.54_V014 devices allow cgi-bin/te_acceso_router.cgi curWebPage XSS. | 4.3 |
| 2021-01-18 | CVE-2021-3166 | Unrestricted Upload of File with Dangerous Type vulnerability in Asus Dsl-N14U B1 Firmware 1.1.2.3805 An issue was discovered on ASUS DSL-N14U-B1 1.1.2.3_805 devices. | 5.0 |
| 2020-12-09 | CVE-2020-29656 | Information Exposure vulnerability in Asus Rt-Ac88U Firmware An information disclosure vulnerability exists in RT-AC88U Download Master before 3.1.0.108. | 5.0 |
| 2020-12-09 | CVE-2020-29655 | Injection vulnerability in Asus Rt-Ac88U Firmware An injection vulnerability exists in RT-AC88U Download Master before 3.1.0.108. | 5.0 |