Security Advisory

CVE-2021-3166

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-01-18 04:55:03

Last updated 2024-08-03 16:45:51

Assigner mitre

State PUBLISHED

Description

An issue was discovered on ASUS DSL-N14U-B1 1.1.2.3_805 devices. An attacker can upload arbitrary file content as a firmware update when the filename Settings_DSL-N14U-B1.trx is used. Once this file is loaded, shutdown measures on a wide range of services are triggered as if it were a real update, resulting in a persistent outage of those services.

← Browse all CVEs View on cve.org ↗