asus

325 tracked vulnerabilities.

CVE-2022-36439 MEDIUM
ASUS System Control Interface <3.1.5.0 - Local Privilege Escalation
Oct 18, 2022
CVSS 6.0
EPSS 0.00
CVE-2022-36438 HIGH
AsusSwitch.exe <1.0.10.0 - Privilege Escalation
Oct 18, 2022
CVSS 7.8
EPSS 0.00
CVE-2022-38699 MEDIUM
Armoury Crate Service - Privilege Escalation
Sep 28, 2022
CVSS 5.9
EPSS 0.00
CVE-2022-26376 CRITICAL
Asuswrt <3.0.0.4.386_48706 - Memory Corruption
Aug 05, 2022
CVSS 9.8
EPSS 0.01
CVE-2022-35899 HIGH
ASUSTeK Aura Ready Game SDK <1.0.0.4 - Privilege Escalation
Jul 21, 2022
CVSS 7.8
EPSS 0.01
CVE-2022-32988 MEDIUM
ASUS DSL-N14U-B1 Firmware 1.1.2.3_805 - Stored Cross-Site Scripting via *list Parameters
Jul 01, 2022
CVSS 5.4
EPSS 0.01
CVE-2022-26669 HIGH
ASUS Control Center - SQL Injection
Jun 20, 2022
CVSS 8.8
EPSS 0.01
CVE-2022-26668 HIGH
ASUS Control Center API - Privilege Escalation
Jun 20, 2022
CVSS 7.3
EPSS 0.01
CVE-2022-31874 CRITICAL
ASUS RT-N53 3.0.0.4.376.3754 - OS Command Injection via SystemCmd Parameter
Jun 17, 2022
CVSS 9.8
EPSS 0.19
CVE-2022-26674 CRITICAL
ASUS RT-AX88U Firmware < 3.0.0.4.386.46065 - Unauthenticated Remote Code Execution via Format String Vulnerability
Apr 22, 2022
CVSS 9.8
EPSS 0.03
CVE-2022-26673 MEDIUM
ASUS RT-AX88U Firmware < 3.0.0.4.386.46065 - Stored Cross-Site Scripting via HTTP Header Parameter
Apr 22, 2022
CVSS 5.4
EPSS 0.01
CVE-2022-26672 HIGH
ASUS WebStorage < 3.10.2 - Unauthenticated Use of Hard-coded Credentials
Apr 22, 2022
CVSS 7.3
EPSS 0.01
CVE-2022-25597 HIGH
ASUS RT-AC86U Firmware - Unauthenticated OS Command Injection via LPD Service
Apr 07, 2022
CVSS 8.8
EPSS 0.01
CVE-2022-25596 HIGH
ASUS RT-AC56U - Unauthenticated Heap-Based Buffer Overflow via Decryption Parameter
Apr 07, 2022
CVSS 8.8
EPSS 0.01
CVE-2022-25595 MEDIUM
ASUS RT-AC86U Firmware - Unauthenticated Denial of Service via LAN Request Handling
Apr 07, 2022
CVSS 6.5
EPSS 0.00
CVE-2022-23973 HIGH
ASUS RT-AX56U Firmware - Unauthenticated Stack-Based Buffer Overflow via User Profile Configuration
Apr 07, 2022
CVSS 8.8
EPSS 0.01
CVE-2022-23972 HIGH
ASUS RT-AX56U Firmware - Unauthenticated SQL Injection
Apr 07, 2022
CVSS 8.8
EPSS 0.01
CVE-2022-23971 HIGH
ASUS RT-AX56U Firmware - Unauthenticated Path Traversal via update_PLC/PORT URL Parameter
Apr 07, 2022
CVSS 8.1
EPSS 0.00
CVE-2022-23970 HIGH
ASUS RT-AX56U Firmware - Unauthenticated Path Traversal via URL Parameter
Apr 07, 2022
CVSS 8.1
EPSS 0.00
CVE-2022-22814 CRITICAL
MyASUS < 3.1.2.0 - Privilege Escalation via System Diagnosis Service
Mar 10, 2022
CVSS 9.8
EPSS 0.02
CVE-2022-22262 HIGH
ROG Live Service < 1.3.3.0 - Unauthenticated Arbitrary File Deletion via Symbolic Link
Mar 01, 2022
CVSS 7.7
EPSS 0.00
CVE-2022-21933 MEDIUM
ASUS VivoMini/Mini PC Firmware - Arbitrary Code Execution via SMI Memory Modification
Jan 21, 2022
CVSS 6.7
EPSS 0.00
CVE-2022-22054 MEDIUM
ASUS RT-AX56U Firmware - Unauthenticated Path Traversal via URL Parameter
Jan 14, 2022
CVSS 6.5
EPSS 0.00
CVE-2021-37317 CRITICAL
ASUS RT-AC68U Firmware < 3.0.0.4.386.41634 - Path Traversal and Arbitrary File Write via Cloud Disk COPY/MOVE Operations
Feb 03, 2023
CVSS 9.1
EPSS 0.02
CVE-2021-37316 HIGH
ASUS RT-AC68U Firmware < 3.0.0.4.386.41634 - SQL Injection via Cloud Disk
Feb 03, 2023
CVSS 7.5
EPSS 0.01