CVE-2024-3079

Summary

Certain models of ASUS routers have buffer overflow vulnerabilities, allowing remote attackers with administrative privileges to execute arbitrary commands on the device.

Affected Software

VendorProductVersion RangeStatus
ASUSZenWiFi XT8earlier <= 3.0.0.4.388_24609affected
ASUSZenWiFi XT8 V2earlier <= 3.0.0.4.388_24609affected
ASUSRT-AX88Uearlier <= 3.0.0.4.388_24198affected
ASUSRT-AX58Uearlier <= 3.0.0.4.388_23925affected
ASUSRT-AX57earlier <= 3.0.0.4.386_52294affected
ASUSRT-AC86Uearlier <= 3.0.0.4.386_51915affected
ASUSRT-AC68Uearlier <= 3.0.0.4.386_51668affected

Weaknesses

  • CWE-121: CWE-121: Stack-based Buffer Overflow

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

CVE Program Container

Additional References

References