Robert Chen

**Name of the Vulnerable Software and Affected Versions** ASUS RT-AC68U router firmware versions prior to 3.0.0.4.386.41634 **Description** The issue allows remote attackers to write arbitrary files via improper sanitation on the target for COPY and MOVE operations. This is due to a Directory Traversal vulnerability in Cloud Disk. **Recommendations** For versions prior to 3.0.0.4.386.41634, update the firmware to version 3.0.0.4.386.41634 or later to resolve the issue. As a temporary workaround, consider restricting access to the Cloud Disk feature until the update is applied.

**Name of the Vulnerable Software and Affected Versions** Octopus Server (affected versions not specified) **Description** The issue arises when Octopus Server is installed using a custom folder location, resulting in incorrect folder ACLs. This could allow an unprivileged user to exploit DLL side-loading, potentially gaining privileged access. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Node.js versions prior to 16.4.1 Node.js versions prior to 14.17.2 Node.js versions prior to 12.22.2 **Description** The issue allows for local privilege escalation attacks under certain conditions on Windows platforms due to improper configuration of permissions in the installation directory. This can lead to two different escalation attacks: PATH and DLL hijacking. **Recommendations** For versions prior to 16.4.1, update to version 16.4.1 or later. For versions prior to 14.17.2, update to version 14.17.2 or later. For versions prior to 12.22.2, update to version 12.22.2 or later.

**Name of the Vulnerable Software and Affected Versions** RabbitMQ versions prior to 3.8.16 **Description** The issue is related to insufficient access control in the plugin directory of RabbitMQ installers on Windows. This could potentially allow attackers with sufficient local filesystem permissions to add arbitrary plugins, leading to the execution of arbitrary code. **Recommendations** For versions prior to 3.8.16, update to version 3.8.16 or later to resolve the issue. As a temporary workaround, consider restricting access to the plugin directory to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** ASUS RT-AC68U router firmware versions prior to 3.0.0.4.386.41634 **Description** The issue is related to a SQL injection vulnerability in the Cloud Disk feature of the ASUS RT-AC68U router firmware. This vulnerability allows remote attackers to view sensitive information, specifically via the /etc/shadow file. The vulnerability is due to inadequate protection of the SQL query structure. **Recommendations** For versions prior to 3.0.0.4.386.41634, update the firmware to version 3.0.0.4.386.41634 or later to resolve the issue. As a temporary workaround, consider restricting access to the Cloud Disk feature until the update is applied. Avoid using the /etc/shadow file in the affected API endpoint until the issue is resolved.