CyberSec.Space Logo
Back to CVE Browser

CVE-2018-11491

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.1380%
EPSS Percentile21.53th
PublishedJul 25, 2018
Last ModifiedNov 21, 2024

Vulnerability Description

ASUS HG100 devices with firmware before 1.05.12 allow unauthenticated access, leading to remote command execution.

Affected Platforms (CPE)

πŸ’»
Asus

Hg100 Firmware

< 1.05.12

References & Advisories

πŸ”— https://mars-cheng.github.io/blog/2018/CVE-2018-11491/
πŸ”— https://www.asus.com/tw/News/qnEosWKPVDpmOeqL
πŸ”— https://mars-cheng.github.io/blog/2018/CVE-2018-11491/
πŸ”— https://www.asus.com/tw/News/qnEosWKPVDpmOeqL

Related Vulnerabilities

CVE-2019-1106110.0

A broken access control vulnerability in HG100 firmware versions up to 4.00.06 allows an attacker in the same local area network t...

CVE-2019-110607.5

The web api server on Port 8080 of ASUS HG100 firmware up to 1.05.12, which is vulnerable to Slowloris HTTP Denial of Service: an ...

CVE-2026-53430

Improper Handling of Highly Compressed Data (Data Amplification) vulnerability in elixir-grpc grpc (GRPC.Compressor.Gzip, GRPC.Mes...

CVE-2026-48854

Allocation of Resources Without Limits or Throttling vulnerability in elixir-grpc grpc allows unauthenticated attackers to exhaust...