CyberSec.Space Logo
CVEブラウザに戻る

CVE-2018-11491

CRITICAL
9.8
CVSS Severity Score
EPSS Score0.1380%
EPSS Percentile21.53th
Published2018年7月25日
Last Modified2024年11月21日

Vulnerability Description

ASUS HG100 devices with firmware before 1.05.12 allow unauthenticated access, leading to remote command execution.

Affected Platforms (CPE)

💻
Asus

Hg100 Firmware

< 1.05.12

References & Advisories

🔗 https://mars-cheng.github.io/blog/2018/CVE-2018-11491/
🔗 https://www.asus.com/tw/News/qnEosWKPVDpmOeqL
🔗 https://mars-cheng.github.io/blog/2018/CVE-2018-11491/
🔗 https://www.asus.com/tw/News/qnEosWKPVDpmOeqL

関連する脆弱性情報

CVE-2019-1106110.0

A broken access control vulnerability in HG100 firmware versions up to 4.00.06 allows an attacker in the same local area network t...

CVE-2019-110607.5

The web api server on Port 8080 of ASUS HG100 firmware up to 1.05.12, which is vulnerable to Slowloris HTTP Denial of Service: an ...

CVE-2026-53430

Improper Handling of Highly Compressed Data (Data Amplification) vulnerability in elixir-grpc grpc (GRPC.Compressor.Gzip, GRPC.Mes...

CVE-2026-48854

Allocation of Resources Without Limits or Throttling vulnerability in elixir-grpc grpc allows unauthenticated attackers to exhaust...