First published: Sun Oct 14 2018(Updated: )
On ASUS RT-AC58U 3.0.0.4.380_6516 devices, remote attackers can discover hostnames and IP addresses by reading dhcpLeaseInfo data in the HTML source code of the Main_Login.asp page.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Asus Rt-ac58u Firmware | =3.0.0.4.380.6516 | |
ASUS RT-AC58U |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for this ASUS RT-AC58U issue is CVE-2018-18287.
The severity of CVE-2018-18287 is medium, with a CVSS score of 5.3.
Remote attackers can exploit CVE-2018-18287 by reading dhcpLeaseInfo data in the HTML source code of the Main_Login.asp page on ASUS RT-AC58U devices.
The affected software version of CVE-2018-18287 is ASUS RT-AC58U firmware version 3.0.0.4.380_6516.
Yes, ASUS RT-AC58U devices with firmware version 3.0.0.4.380_6516 are vulnerable to CVE-2018-18287.