CVE-2018-6000

Name of the Vulnerable Software and Affected Versions: AsusWRT versions prior to 3.0.0.4.384 10007

Description: An issue was discovered that allows attackers to set the admin password and launch an SSH daemon, or enable infosvr command mode, via a crafted request to the do vpnupload post function in vpnupload.cgi. This provides a means for unauthenticated attackers to obtain remote administrative access.

Recommendations: For versions prior to 3.0.0.4.384 10007, update to version 3.0.0.4.384 10007 or later to resolve the issue. As a temporary workaround, consider restricting access to the vpnupload.cgi endpoint to minimize the risk of exploitation.