CVE-2021-37317: Path Traversal
First published: Fri Feb 03 2023(Updated: )
Directory Traversal vulnerability in Cloud Disk in ASUS RT-AC68U router firmware version before 3.0.0.4.386.41634 allows remote attackers to write arbitrary files via improper sanitation on the target for COPY and MOVE operations.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| ASUS RT-AC68U Firmware | <3.0.0.4.386.41634 | |
| ASUS RT-AC68U |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this directory traversal vulnerability?
The vulnerability ID for this directory traversal vulnerability is CVE-2021-37317.
What is the affected software?
The affected software is ASUS RT-AC68U router firmware version before 3.0.0.4.386.41634.
How does the vulnerability work?
The vulnerability allows remote attackers to write arbitrary files via improper sanitation on the target for COPY and MOVE operations.
What is the severity of CVE-2021-37317?
The severity of CVE-2021-37317 is critical with a CVSS score of 9.1.
Is there a fix available for this vulnerability?
Yes, updating the ASUS RT-AC68U router firmware to version 3.0.0.4.386.41634 or later will fix this vulnerability.
- collector/nvd-index
- agent/severity
- agent/type
- agent/author
- agent/weakness
- agent/event
- agent/references
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- agent/description
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/asus
- canonical/asus rt-ac68u firmware
- canonical/asus rt-ac68u