CVE-2018-9285
CVSS V2 High 10
CVSS V3 Critical 9.8
Description
Main_Analysis_Content.asp in /apply.cgi on ASUS RT-AC66U, RT-AC68U, RT-AC86U, RT-AC88U, RT-AC1900, RT-AC2900, and RT-AC3100 devices before 3.0.0.4.384_10007; RT-N18U devices before 3.0.0.4.382.39935; RT-AC87U and RT-AC3200 devices before 3.0.0.4.382.50010; and RT-AC5300 devices before 3.0.0.4.384.20287 allows OS command injection via the pingCNT and destIP fields of the SystemCmd variable.
Overview
- CVE ID
- CVE-2018-9285
- Assigner
- cve@mitre.org
- Vulnerability Status
- Modified
- Published Version
- 2018-04-04T19:29:00
- Last Modified Date
- 2020-11-13T18:15:12
Weakness Enumerations
CPE Configuration (Product)
| CPE | Vulnerable | Operator | Version Start | Version End |
|---|---|---|---|---|
| AND | ||||
| cpe:2.3:o:asus:rt-ac66u_firmware:*:*:*:*:*:*:*:* | 1 | OR | 3.0.0.4.384.10007 | |
| cpe:2.3:h:asus:rt-ac66u:-:*:*:*:*:*:*:* | 0 | OR | ||
| AND | ||||
| cpe:2.3:o:asus:rt-ac68u_firmware:*:*:*:*:*:*:*:* | 1 | OR | 3.0.0.4.384.10007 | |
| cpe:2.3:h:asus:rt-ac68u:-:*:*:*:*:*:*:* | 0 | OR | ||
| AND | ||||
| cpe:2.3:o:asus:rt-ac86u_firmware:*:*:*:*:*:*:*:* | 1 | OR | 3.0.0.4.384.10007 | |
| cpe:2.3:h:asus:rt-ac86u:-:*:*:*:*:*:*:* | 0 | OR | ||
| AND | ||||
| cpe:2.3:o:asus:rt-ac88u_firmware:*:*:*:*:*:*:*:* | 1 | OR | 3.0.0.4.384.10007 | |
| cpe:2.3:h:asus:rt-ac88u:-:*:*:*:*:*:*:* | 0 | OR | ||
| AND | ||||
| cpe:2.3:o:asus:rt-ac1900_firmware:*:*:*:*:*:*:*:* | 1 | OR | 3.0.0.4.384.10007 | |
| cpe:2.3:h:asus:rt-ac1900:-:*:*:*:*:*:*:* | 0 | OR | ||
| AND | ||||
| cpe:2.3:o:asus:rt-ac2900_firmware:*:*:*:*:*:*:*:* | 1 | OR | 3.0.0.4.384.10007 | |
| cpe:2.3:h:asus:rt-ac2900:-:*:*:*:*:*:*:* | 0 | OR | ||
| AND | ||||
| cpe:2.3:o:asus:rt-ac3100_firmware:*:*:*:*:*:*:*:* | 1 | OR | 3.0.0.4.384.10007 | |
| cpe:2.3:h:asus:rt-ac3100:-:*:*:*:*:*:*:* | 0 | OR | ||
| AND | ||||
| cpe:2.3:o:asus:rt-n18u_firmware:*:*:*:*:*:*:*:* | 1 | OR | 3.0.0.4.382.39935 | |
| cpe:2.3:h:asus:rt-n18u:-:*:*:*:*:*:*:* | 0 | OR | ||
| AND | ||||
| cpe:2.3:o:asus:rt-ac87u_firmware:*:*:*:*:*:*:*:* | 1 | OR | 3.0.0.4.382.50010 | |
| cpe:2.3:h:asus:rt-ac87u:-:*:*:*:*:*:*:* | 0 | OR | ||
| AND | ||||
| cpe:2.3:o:asus:rt-ac3200_firmware:*:*:*:*:*:*:*:* | 1 | OR | 3.0.0.4.382.50010 | |
| cpe:2.3:h:asus:rt-ac3200:-:*:*:*:*:*:*:* | 0 | OR | ||
| AND | ||||
| cpe:2.3:o:asus:rt-ac5300_firmware:*:*:*:*:*:*:*:* | 1 | OR | 3.0.0.4.384.20287 | |
| cpe:2.3:h:asus:rt-ac5300:-:*:*:*:*:*:*:* | 0 | OR |
CVSS Version 2
- Version
- 2.0
- Vector String
- AV:N/AC:L/Au:N/C:C/I:C/A:C
- Access Vector
- NETWORK
- Access Compatibility
- LOW
- Authentication
- NONE
- Confidentiality Impact
- COMPLETE
- Integrity Impact
- COMPLETE
- Availability Impact
- COMPLETE
- Base Score
- 10
- Severity
- HIGH
- Exploitability Score
- 10
- Impact Score
- 10
CVSS Version 3
- Version
- 3.0
- Vector String
- CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
- Attack Vector
- NETWORK
- Attack Compatibility
- LOW
- Privileges Required
- NONE
- User Interaction
- NONE
- Scope
- UNCHANGED
- Confidentiality Impact
- HIGH
- Availability Impact
- HIGH
- Base Score
- 9.8
- Base Severity
- CRITICAL
- Exploitability Score
- 3.9
- Impact Score
- 5.9
References
| Reference URL | Reference Tags |
|---|---|
| https://www.fortinet.com/blog/threat-research/fortiguard-labs-discovers-vulnerability-in-asus-router.html | Third Party Advisory |
| https://fortiguard.com/zeroday/FG-VD-17-216 | Third Party Advisory |
| http://packetstormsecurity.com/files/160049/ASUS-TM-AC1900-Arbitrary-Command-Execution.html |
Sources
| Source Name | Source URL |
|---|---|
| NIST | https://nvd.nist.gov/vuln/detail/CVE-2018-9285 |
| MITRE | https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-9285 |
History
| Created | Old Value | New Value | Data Type | Notes |
|---|---|---|---|---|
| 2022-05-10 16:20:05 | Added to TrackCVE | |||
| 2022-12-03 04:27:05 | 2018-04-04T19:29Z | 2018-04-04T19:29:00 | CVE Published Date | updated |
| 2022-12-03 04:27:05 | 2020-11-13T18:15:12 | CVE Modified Date | updated | |
| 2022-12-03 04:27:05 | Modified | Vulnerability Status | updated |