CVE-2014-2718

ASUS RT-AC68U, RT-AC66R, RT-AC66U, RT-AC56R, RT-AC56U, RT-N66R, RT-N66U, RT-N56R, RT-N56U, and possibly other RT-series routers before firmware 3.0.0.4.376.x do not verify the integrity of firmware (1) update information or (2) downloaded updates, which allows man-in-the-middle (MITM) attackers to execute arbitrary code via a crafted image.

CVSS v2.0 7.1 HIGH

7.1^/10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:M/Au:N/C:N/I:C/A:N

Exploitability : 8.6 / Impact : 6.9

Access Vector NETWORK

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact NONE

Integrity Impact COMPLETE

Availability Impact NONE

References

Link	Resource
http://seclists.org/fulldisclosure/2014/Oct/122	Exploit
http://www.securityfocus.com/bid/70791
http://dnlongen.blogspot.com/2014/10/CVE-2014-2718-Asus-RT-MITM.html	Exploit
http://packetstormsecurity.com/files/128904/ASUS-Router-Man-In-The-Middle.html	Exploit
https://support.t-mobile.com/docs/DOC-21994
https://exchange.xforce.ibmcloud.com/vulnerabilities/98316

Configurations

Configuration 1 (hide)

cpe:2.3:o:t-mobile:tm-ac1900:3.0.0.4.376_3169:*:*:*:*:*:*:*

Configuration 2 (hide)

AND

cpe:2.3:o:asus:rt_series_firmware:*:*:*:*:*:*:*:*

OR	cpe:2.3:h:asus:rt-n66u::::::::
	cpe:2.3:h:asus:rt-n56r::::::::
	cpe:2.3:h:asus:rt-ac68u::::::::
	cpe:2.3:h:asus:rt-ac66u::::::::
	cpe:2.3:h:asus:rt-ac56r::::::::
	cpe:2.3:h:asus:rt-n66r::::::::
	cpe:2.3:h:asus:rt-ac66r::::::::
	cpe:2.3:h:asus:rt-n56u::::::::

Information

Published : 2014-11-04 14:55

Updated : 2017-08-28 18:34

NVD link : CVE-2014-2718

Mitre link : CVE-2014-2718

JSON object : View

CWE

CWE-345

Insufficient Verification of Data Authenticity

Products Affected

asus

rt-ac66u
rt-n56r
rt_series_firmware
rt-ac56r
rt-n56u
rt-n66u
rt-ac68u
rt-n66r
rt-ac66r

t-mobile

tm-ac1900

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://seclists.org/fulldisclosure/2014/Oct/122", "name": "20141028 CVE-2014-2718: ASUS wireless router updates are vulnerable to a MITM attack", "tags": ["Exploit"], "refsource": "FULLDISC"}, {"url": "http://www.securityfocus.com/bid/70791", "name": "70791", "tags": [], "refsource": "BID"}, {"url": "http://dnlongen.blogspot.com/2014/10/CVE-2014-2718-Asus-RT-MITM.html", "name": "http://dnlongen.blogspot.com/2014/10/CVE-2014-2718-Asus-RT-MITM.html", "tags": ["Exploit"], "refsource": "MISC"}, {"url": "http://packetstormsecurity.com/files/128904/ASUS-Router-Man-In-The-Middle.html", "name": "http://packetstormsecurity.com/files/128904/ASUS-Router-Man-In-The-Middle.html", "tags": ["Exploit"], "refsource": "MISC"}, {"url": "https://support.t-mobile.com/docs/DOC-21994", "name": "https://support.t-mobile.com/docs/DOC-21994", "tags": [], "refsource": "CONFIRM"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/98316", "name": "asus-cve20142718-mitm(98316)", "tags": [], "refsource": "XF"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "ASUS RT-AC68U, RT-AC66R, RT-AC66U, RT-AC56R, RT-AC56U, RT-N66R, RT-N66U, RT-N56R, RT-N56U, and possibly other RT-series routers before firmware 3.0.0.4.376.x do not verify the integrity of firmware (1) update information or (2) downloaded updates, which allows man-in-the-middle (MITM) attackers to execute arbitrary code via a crafted image."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "CWE-345"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2014-2718", "ASSIGNER": "cve@mitre.org"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 7.1, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:N/I:C/A:N", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "MEDIUM", "availabilityImpact": "NONE", "confidentialityImpact": "NONE"}, "severity": "HIGH", "impactScore": 6.9, "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": true}}, "publishedDate": "2014-11-04T22:55Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:o:t-mobile:tm-ac1900:3.0.0.4.376_3169:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}, {"children": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:o:asus:rt_series_firmware:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndIncluding": "3.0.0.4.374.x"}]}, {"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:h:asus:rt-n66u:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:h:asus:rt-n56r:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:h:asus:rt-ac68u:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:h:asus:rt-ac66u:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:h:asus:rt-ac56r:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:h:asus:rt-n66r:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:h:asus:rt-ac66r:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:h:asus:rt-n56u:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}]}], "operator": "AND", "cpe_match": []}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2017-08-29T01:34Z"}

7.1 /10