-
ASUS RT-AX58U Firmware version 3.0.0.4.388.22237보안 2023. 1. 12. 21:48반응형ASUS RT-AX58U 새로운 펌웨어가 나왔다Firmware version 3.0.0.4.388.22237
1. Supported WireGuard VPN server and client.
2. Supported VPN fusion. It can easily achieve VPN connection to network devices like Smart TV, Game consoles and without installing the VPN client software.
3. Supported new devices connection notification.
4. Supported connection diagnostic on the ASUS router app.
5. Supported Instant Guard 2.0 which helps easily invite family or friends to join the VPN connection.
6. Upgraded parental control and added reward, new scheduler for flexible setting
7. Fixed USB icon issue in port status.
8. Fixed HTTP response splitting vulnerability. Thanks to Efstratios Chatzoglou, University of the Aegean.
9. Fixed status page HTML vulnerability. Thanks to David Ward.
10. Fixed CVE-2018-1160. Thanks to Steven Sroba.
11. Fixed cfg_server security issue.
RT-AX82U 라우터에는 CVE-2022-35401 취약점이 있다고 한다HTTP 요청을 악용하여 인증을 바이패스 하는 것이 가능하다
즉 웹 접속을 통해 관리자 권한을 얻을수 있다는 것이다
이 기기를 가진 이들은 반드시 새버전으로 업데이트
https://www.securityweek.com/severe-vulnerabilities-allow-hacking-asus-gaming-router
Severe Vulnerabilities Allow Hacking of Asus Gaming Router | SecurityWeek.Com
Cisco’s Talos security researchers have published technical information on three severe vulnerabilities impacting Asus RT-AX82U routers. A Wi-Fi 6 gaming router, the RT-AX82U can be configured via an HTTP server that is running on the local network, but
www.securityweek.com
반응형'보안' 카테고리의 다른 글
오픈소스 네트워크 모니터링 툴(Cacti) 치명적 취약점 (0) 2023.01.17 아마존 판매 안드로이드 TV BOX에 Malware 내장? (0) 2023.01.16 2022년 가장 흔한 패스워드 (0) 2023.01.06 Windows 오류 보고 도구(WerFault.exe)를 이용하여 malware 배포 (0) 2023.01.06 북한 가짜 은행, 벤처기업 도메인 만들어 해킹 (0) 2023.01.03