What is the severity of CVE-2014-9583?

CVE-2014-9583 is classified as a high severity vulnerability due to its potential for remote command execution.

How do I fix CVE-2014-9583?

To fix CVE-2014-9583, upgrade the affected ASUS WRT firmware to the latest version provided by the manufacturer that addresses this vulnerability.

What devices are affected by CVE-2014-9583?

Devices such as ASUS RT-AC66U, RT-N66U, and various versions of ASUS WRT firmware are affected by CVE-2014-9583.

Can CVE-2014-9583 be exploited remotely?

Yes, CVE-2014-9583 can be exploited remotely by attackers to bypass authentication and execute arbitrary commands.

What type of vulnerability is CVE-2014-9583?

CVE-2014-9583 is a command injection vulnerability that allows unauthorized command execution due to improper MAC address validation.

Vulnerability/
CVE-2014-9583

critical

CWE

264

8/1/2015

27/4/2018

CVE-2014-9583

First published: Thu Jan 08 2015(Updated: )

common.c in infosvr in ASUS WRT firmware 3.0.0.4.376_1071, 3.0.0.376.2524-g0013f52, and other versions, as used in RT-AC66U, RT-N66U, and other routers, does not properly check the MAC address for a request, which allows remote attackers to bypass authentication and execute arbitrary commands via a NET_CMD_ID_MANU_CMD packet to UDP port 9999. NOTE: this issue was incorrectly mapped to CVE-2014-10000, but that ID is invalid due to its use as an example of the 2014 CVE ID syntax change.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
ASUS TM-AC1900	=3.0.0.4.376_3169
ASUS WRT firmware	=3.0.0.4.376.2524-g0012f52
ASUS WRT firmware	=3.0.0.4.376_1071
ASUS RT-AC66U firmware
Asus EA-N66

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2014-9583?
CVE-2014-9583 is classified as a high severity vulnerability due to its potential for remote command execution.
How do I fix CVE-2014-9583?
To fix CVE-2014-9583, upgrade the affected ASUS WRT firmware to the latest version provided by the manufacturer that addresses this vulnerability.
What devices are affected by CVE-2014-9583?
Devices such as ASUS RT-AC66U, RT-N66U, and various versions of ASUS WRT firmware are affected by CVE-2014-9583.
Can CVE-2014-9583 be exploited remotely?
Yes, CVE-2014-9583 can be exploited remotely by attackers to bypass authentication and execute arbitrary commands.
What type of vulnerability is CVE-2014-9583?
CVE-2014-9583 is a command injection vulnerability that allows unauthorized command execution due to improper MAC address validation.

agent/last-modified-date
agent/first-publish-date
agent/type
agent/description
agent/severity
agent/author
agent/weakness
agent/references
agent/event
agent/softwarecombine
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/t-mobile
canonical/asus tm-ac1900
version/asus tm-ac1900/3.0.0.4.376_3169
vendor/asus
canonical/asus wrt firmware
version/asus wrt firmware/3.0.0.4.376.2524-g0012f52
version/asus wrt firmware/3.0.0.4.376_1071
canonical/asus rt-ac66u firmware
canonical/asus ea-n66

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.