CVE-2023-41349

Name of the Vulnerable Software and Affected Versions ASUS RT-AX88U (affected versions not specified)

Description The issue is related to the use of externally controllable format strings within the Advanced Open VPN function of the ASUS RT-AX88U router. An authenticated remote attacker can exploit the exported OpenVPN configuration to execute an externally-controlled format string attack. This can result in sensitivity information leakage or force the device to reset, leading to permanent denial of service.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.