Rs720q\-E9\-Rs8_firmware - Vulncode-DB

Note:

This project will be discontinued after December 13, 2021. [more]

Product:
Rs720q\-E9\-Rs8_firmware
(Asus)

Repositories	Unknown: This might be proprietary software.
#Vulnerabilities	17

Date	Id	Summary	Products	Score	Patch	Annotated
2021-04-06	CVE-2021-28195	The Radius configuration function in ASUS BMC’s firmware Web management page does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote attackers use the leakage to abnormally terminate the Web service.	Asmb9\-Ikvm_firmware, E700_g4_firmware, Esc4000_dhd_g4_firmware, Esc4000_g4_firmware, Esc4000_g4x_firmware, Esc8000_g4\/10g_firmware, Esc8000_g4_firmware, Knpa\-U16_firmware, Pro_e800_g4_firmware, Rs100\-E10\-Pi2_firmware, Rs300\-E10\-Ps4_firmware, Rs300\-E10\-Rs4_firmware, Rs500\-E9\-Ps4_firmware, Rs500\-E9\-Rs4\-U_firmware, Rs500\-E9\-Rs4_firmware, Rs500a\-E10\-Ps4_firmware, Rs500a\-E10\-Rs4_firmware, Rs500a\-E9\-Ps4_firmware, Rs500a\-E9\-Rs4_firmware, Rs500a\-E9_rs4_u_firmware, Rs520\-E9\-Rs12\-E_firmware, Rs520\-E9\-Rs8_firmware, Rs700\-E9\-Rs12_firmware, Rs700\-E9\-Rs4_firmware, Rs700a\-E9\-Rs12v2_firmware, Rs700a\-E9\-Rs4_firmware, Rs700a\-E9\-Rs4v2_firmware, Rs720\-E9\-Rs12\-E_firmware, Rs720\-E9\-Rs24\-U_firmware, Rs720\-E9\-Rs8\-G_firmware, Rs720a\-E9\-Rs12v2_firmware, Rs720a\-E9\-Rs24\-E_firmware, Rs720a\-E9\-Rs24v2_firmware, Rs720q\-E9\-Rs24\-S_firmware, Rs720q\-E9\-Rs8\-S_firmware, Rs720q\-E9\-Rs8_firmware, Ws_c422_pro\/se_firmware, Ws_c621e_sage_firmware, Ws_x299_pro\/se_firmware, Z11pa\-D8_firmware, Z11pa\-D8c_firmware, Z11pa\-U12\/10g\-2s_firmware, Z11pa\-U12_firmware, Z11pr\-D16_firmware	4.9
2021-04-06	CVE-2021-28199	The specific function in ASUS BMC’s firmware Web management page (Modify user’s information function) does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote attackers use the leakage to abnormally terminate the Web service.	Asmb9\-Ikvm_firmware, E700_g4_firmware, Esc4000_dhd_g4_firmware, Esc4000_g4_firmware, Esc4000_g4x_firmware, Esc8000_g4\/10g_firmware, Esc8000_g4_firmware, Knpa\-U16_firmware, Pro_e800_g4_firmware, Rs100\-E10\-Pi2_firmware, Rs300\-E10\-Ps4_firmware, Rs300\-E10\-Rs4_firmware, Rs500\-E9\-Ps4_firmware, Rs500\-E9\-Rs4\-U_firmware, Rs500\-E9\-Rs4_firmware, Rs500a\-E10\-Ps4_firmware, Rs500a\-E10\-Rs4_firmware, Rs500a\-E9\-Ps4_firmware, Rs500a\-E9\-Rs4_firmware, Rs500a\-E9_rs4_u_firmware, Rs520\-E9\-Rs12\-E_firmware, Rs520\-E9\-Rs8_firmware, Rs700\-E9\-Rs12_firmware, Rs700\-E9\-Rs4_firmware, Rs700a\-E9\-Rs12v2_firmware, Rs700a\-E9\-Rs4_firmware, Rs700a\-E9\-Rs4v2_firmware, Rs720\-E9\-Rs12\-E_firmware, Rs720\-E9\-Rs24\-U_firmware, Rs720\-E9\-Rs8\-G_firmware, Rs720a\-E9\-Rs12v2_firmware, Rs720a\-E9\-Rs24\-E_firmware, Rs720a\-E9\-Rs24v2_firmware, Rs720q\-E9\-Rs24\-S_firmware, Rs720q\-E9\-Rs8\-S_firmware, Rs720q\-E9\-Rs8_firmware, Ws_c422_pro\/se_firmware, Ws_c621e_sage_firmware, Ws_x299_pro\/se_firmware, Z11pa\-D8_firmware, Z11pa\-D8c_firmware, Z11pa\-U12\/10g\-2s_firmware, Z11pa\-U12_firmware, Z11pr\-D16_firmware	4.9
2021-04-06	CVE-2021-28200	The CD media configuration function in ASUS BMC’s firmware Web management page does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote attackers use the leakage to abnormally terminate the Web service.	Asmb9\-Ikvm_firmware, E700_g4_firmware, Esc4000_dhd_g4_firmware, Esc4000_g4_firmware, Esc4000_g4x_firmware, Esc8000_g4\/10g_firmware, Esc8000_g4_firmware, Knpa\-U16_firmware, Pro_e800_g4_firmware, Rs100\-E10\-Pi2_firmware, Rs300\-E10\-Ps4_firmware, Rs300\-E10\-Rs4_firmware, Rs500\-E9\-Ps4_firmware, Rs500\-E9\-Rs4\-U_firmware, Rs500\-E9\-Rs4_firmware, Rs500a\-E10\-Ps4_firmware, Rs500a\-E10\-Rs4_firmware, Rs500a\-E9\-Ps4_firmware, Rs500a\-E9\-Rs4_firmware, Rs500a\-E9_rs4_u_firmware, Rs520\-E9\-Rs12\-E_firmware, Rs520\-E9\-Rs8_firmware, Rs700\-E9\-Rs12_firmware, Rs700\-E9\-Rs4_firmware, Rs700a\-E9\-Rs12v2_firmware, Rs700a\-E9\-Rs4_firmware, Rs700a\-E9\-Rs4v2_firmware, Rs720\-E9\-Rs12\-E_firmware, Rs720\-E9\-Rs24\-U_firmware, Rs720\-E9\-Rs8\-G_firmware, Rs720a\-E9\-Rs12v2_firmware, Rs720a\-E9\-Rs24\-E_firmware, Rs720a\-E9\-Rs24v2_firmware, Rs720q\-E9\-Rs24\-S_firmware, Rs720q\-E9\-Rs8\-S_firmware, Rs720q\-E9\-Rs8_firmware, Ws_c422_pro\/se_firmware, Ws_c621e_sage_firmware, Ws_x299_pro\/se_firmware, Z11pa\-D8_firmware, Z11pa\-D8c_firmware, Z11pa\-U12\/10g\-2s_firmware, Z11pa\-U12_firmware, Z11pr\-D16_firmware	4.9
2021-04-06	CVE-2021-28197	The Active Directory configuration function in ASUS BMC’s firmware Web management page does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote attackers use the leakage to abnormally terminate the Web service.	Asmb9\-Ikvm_firmware, E700_g4_firmware, Esc4000_dhd_g4_firmware, Esc4000_g4_firmware, Esc4000_g4x_firmware, Esc8000_g4\/10g_firmware, Esc8000_g4_firmware, Knpa\-U16_firmware, Pro_e800_g4_firmware, Rs100\-E10\-Pi2_firmware, Rs300\-E10\-Ps4_firmware, Rs300\-E10\-Rs4_firmware, Rs500\-E9\-Ps4_firmware, Rs500\-E9\-Rs4\-U_firmware, Rs500\-E9\-Rs4_firmware, Rs500a\-E10\-Ps4_firmware, Rs500a\-E10\-Rs4_firmware, Rs500a\-E9\-Ps4_firmware, Rs500a\-E9\-Rs4_firmware, Rs500a\-E9_rs4_u_firmware, Rs520\-E9\-Rs12\-E_firmware, Rs520\-E9\-Rs8_firmware, Rs700\-E9\-Rs12_firmware, Rs700\-E9\-Rs4_firmware, Rs700a\-E9\-Rs12v2_firmware, Rs700a\-E9\-Rs4_firmware, Rs700a\-E9\-Rs4v2_firmware, Rs720\-E9\-Rs12\-E_firmware, Rs720\-E9\-Rs24\-U_firmware, Rs720\-E9\-Rs8\-G_firmware, Rs720a\-E9\-Rs12v2_firmware, Rs720a\-E9\-Rs24\-E_firmware, Rs720a\-E9\-Rs24v2_firmware, Rs720q\-E9\-Rs24\-S_firmware, Rs720q\-E9\-Rs8\-S_firmware, Rs720q\-E9\-Rs8_firmware, Ws_c422_pro\/se_firmware, Ws_c621e_sage_firmware, Ws_x299_pro\/se_firmware, Z11pa\-D8_firmware, Z11pa\-D8c_firmware, Z11pa\-U12\/10g\-2s_firmware, Z11pa\-U12_firmware, Z11pr\-D16_firmware	4.9
2021-04-06	CVE-2021-28201	The Service configuration-1 function in ASUS BMC’s firmware Web management page does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote attackers use the leakage to abnormally terminate the Web service.	Asmb9\-Ikvm_firmware, E700_g4_firmware, Esc4000_dhd_g4_firmware, Esc4000_g4_firmware, Esc4000_g4x_firmware, Esc8000_g4\/10g_firmware, Esc8000_g4_firmware, Knpa\-U16_firmware, Pro_e800_g4_firmware, Rs100\-E10\-Pi2_firmware, Rs300\-E10\-Ps4_firmware, Rs300\-E10\-Rs4_firmware, Rs500\-E9\-Ps4_firmware, Rs500\-E9\-Rs4\-U_firmware, Rs500\-E9\-Rs4_firmware, Rs500a\-E10\-Ps4_firmware, Rs500a\-E10\-Rs4_firmware, Rs500a\-E9\-Ps4_firmware, Rs500a\-E9\-Rs4_firmware, Rs500a\-E9_rs4_u_firmware, Rs520\-E9\-Rs12\-E_firmware, Rs520\-E9\-Rs8_firmware, Rs700\-E9\-Rs12_firmware, Rs700\-E9\-Rs4_firmware, Rs700a\-E9\-Rs12v2_firmware, Rs700a\-E9\-Rs4_firmware, Rs700a\-E9\-Rs4v2_firmware, Rs720\-E9\-Rs12\-E_firmware, Rs720\-E9\-Rs24\-U_firmware, Rs720\-E9\-Rs8\-G_firmware, Rs720a\-E9\-Rs12v2_firmware, Rs720a\-E9\-Rs24\-E_firmware, Rs720a\-E9\-Rs24v2_firmware, Rs720q\-E9\-Rs24\-S_firmware, Rs720q\-E9\-Rs8\-S_firmware, Rs720q\-E9\-Rs8_firmware, Ws_c422_pro\/se_firmware, Ws_c621e_sage_firmware, Ws_x299_pro\/se_firmware, Z11pa\-D8_firmware, Z11pa\-D8c_firmware, Z11pa\-U12\/10g\-2s_firmware, Z11pa\-U12_firmware, Z11pr\-D16_firmware	4.9
2021-04-06	CVE-2021-28202	The Service configuration-2 function in ASUS BMC’s firmware Web management page does not verify the string length entered by users, resulting in a Buffer overflow vulnerability. As obtaining the privileged permission, remote attackers use the leakage to abnormally terminate the Web service.	Asmb9\-Ikvm_firmware, E700_g4_firmware, Esc4000_dhd_g4_firmware, Esc4000_g4_firmware, Esc4000_g4x_firmware, Esc8000_g4\/10g_firmware, Esc8000_g4_firmware, Knpa\-U16_firmware, Pro_e800_g4_firmware, Rs100\-E10\-Pi2_firmware, Rs300\-E10\-Ps4_firmware, Rs300\-E10\-Rs4_firmware, Rs500\-E9\-Ps4_firmware, Rs500\-E9\-Rs4\-U_firmware, Rs500\-E9\-Rs4_firmware, Rs500a\-E10\-Ps4_firmware, Rs500a\-E10\-Rs4_firmware, Rs500a\-E9\-Ps4_firmware, Rs500a\-E9\-Rs4_firmware, Rs500a\-E9_rs4_u_firmware, Rs520\-E9\-Rs12\-E_firmware, Rs520\-E9\-Rs8_firmware, Rs700\-E9\-Rs12_firmware, Rs700\-E9\-Rs4_firmware, Rs700a\-E9\-Rs12v2_firmware, Rs700a\-E9\-Rs4_firmware, Rs700a\-E9\-Rs4v2_firmware, Rs720\-E9\-Rs12\-E_firmware, Rs720\-E9\-Rs24\-U_firmware, Rs720\-E9\-Rs8\-G_firmware, Rs720a\-E9\-Rs12v2_firmware, Rs720a\-E9\-Rs24\-E_firmware, Rs720a\-E9\-Rs24v2_firmware, Rs720q\-E9\-Rs24\-S_firmware, Rs720q\-E9\-Rs8\-S_firmware, Rs720q\-E9\-Rs8_firmware, Ws_c422_pro\/se_firmware, Ws_c621e_sage_firmware, Ws_x299_pro\/se_firmware, Z11pa\-D8_firmware, Z11pa\-D8c_firmware, Z11pa\-U12\/10g\-2s_firmware, Z11pa\-U12_firmware, Z11pr\-D16_firmware	4.9
2021-04-06	CVE-2021-28207	The specific function in ASUS BMC’s firmware Web management page (Get Help file function) does not filter the specific parameter. As obtaining the administrator permission, remote attackers can use the means of path traversal to access system files.	Asmb9\-Ikvm_firmware, E700_g4_firmware, Esc4000_dhd_g4_firmware, Esc4000_g4_firmware, Esc4000_g4x_firmware, Esc8000_g4\/10g_firmware, Esc8000_g4_firmware, Knpa\-U16_firmware, Pro_e800_g4_firmware, Rs100\-E10\-Pi2_firmware, Rs300\-E10\-Ps4_firmware, Rs300\-E10\-Rs4_firmware, Rs500\-E9\-Ps4_firmware, Rs500\-E9\-Rs4\-U_firmware, Rs500\-E9\-Rs4_firmware, Rs500a\-E10\-Ps4_firmware, Rs500a\-E10\-Rs4_firmware, Rs500a\-E9\-Ps4_firmware, Rs500a\-E9\-Rs4_firmware, Rs500a\-E9_rs4_u_firmware, Rs520\-E9\-Rs12\-E_firmware, Rs520\-E9\-Rs8_firmware, Rs700\-E9\-Rs12_firmware, Rs700\-E9\-Rs4_firmware, Rs700a\-E9\-Rs12v2_firmware, Rs700a\-E9\-Rs4_firmware, Rs700a\-E9\-Rs4v2_firmware, Rs720\-E9\-Rs12\-E_firmware, Rs720\-E9\-Rs24\-U_firmware, Rs720\-E9\-Rs8\-G_firmware, Rs720a\-E9\-Rs12v2_firmware, Rs720a\-E9\-Rs24\-E_firmware, Rs720a\-E9\-Rs24v2_firmware, Rs720q\-E9\-Rs24\-S_firmware, Rs720q\-E9\-Rs8\-S_firmware, Rs720q\-E9\-Rs8_firmware, Ws_c422_pro\/se_firmware, Ws_c621e_sage_firmware, Ws_x299_pro\/se_firmware, Z11pa\-D8_firmware, Z11pa\-D8c_firmware, Z11pa\-U12\/10g\-2s_firmware, Z11pa\-U12_firmware, Z11pr\-D16_firmware	4.9
2021-04-06	CVE-2021-28209	The specific function in ASUS BMC’s firmware Web management page (Delete video file function) does not filter the specific parameter. As obtaining the administrator permission, remote attackers can use the means of path traversal to access system files.	Asmb9\-Ikvm_firmware, E700_g4_firmware, Esc4000_dhd_g4_firmware, Esc4000_g4_firmware, Esc4000_g4x_firmware, Esc8000_g4\/10g_firmware, Esc8000_g4_firmware, Knpa\-U16_firmware, Pro_e800_g4_firmware, Rs100\-E10\-Pi2_firmware, Rs300\-E10\-Ps4_firmware, Rs300\-E10\-Rs4_firmware, Rs500\-E9\-Ps4_firmware, Rs500\-E9\-Rs4\-U_firmware, Rs500\-E9\-Rs4_firmware, Rs500a\-E10\-Ps4_firmware, Rs500a\-E10\-Rs4_firmware, Rs500a\-E9\-Ps4_firmware, Rs500a\-E9\-Rs4_firmware, Rs500a\-E9_rs4_u_firmware, Rs520\-E9\-Rs12\-E_firmware, Rs520\-E9\-Rs8_firmware, Rs700\-E9\-Rs12_firmware, Rs700\-E9\-Rs4_firmware, Rs700a\-E9\-Rs12v2_firmware, Rs700a\-E9\-Rs4_firmware, Rs700a\-E9\-Rs4v2_firmware, Rs720\-E9\-Rs12\-E_firmware, Rs720\-E9\-Rs24\-U_firmware, Rs720\-E9\-Rs8\-G_firmware, Rs720a\-E9\-Rs12v2_firmware, Rs720a\-E9\-Rs24\-E_firmware, Rs720a\-E9\-Rs24v2_firmware, Rs720q\-E9\-Rs24\-S_firmware, Rs720q\-E9\-Rs8\-S_firmware, Rs720q\-E9\-Rs8_firmware, Ws_c422_pro\/se_firmware, Ws_c621e_sage_firmware, Ws_x299_pro\/se_firmware, Z11pa\-D8_firmware, Z11pa\-D8c_firmware, Z11pa\-U12\/10g\-2s_firmware, Z11pa\-U12_firmware, Z11pr\-D16_firmware	4.9
2021-04-06	CVE-2021-28206	The specific function in ASUS BMC’s firmware Web management page (Record video file function) does not filter the specific parameter. As obtaining the administrator permission, remote attackers can use the means of path traversal to access system files.	Asmb9\-Ikvm_firmware, E700_g4_firmware, Esc4000_dhd_g4_firmware, Esc4000_g4_firmware, Esc4000_g4x_firmware, Esc8000_g4\/10g_firmware, Esc8000_g4_firmware, Knpa\-U16_firmware, Pro_e800_g4_firmware, Rs100\-E10\-Pi2_firmware, Rs300\-E10\-Ps4_firmware, Rs300\-E10\-Rs4_firmware, Rs500\-E9\-Ps4_firmware, Rs500\-E9\-Rs4\-U_firmware, Rs500\-E9\-Rs4_firmware, Rs500a\-E10\-Ps4_firmware, Rs500a\-E10\-Rs4_firmware, Rs500a\-E9\-Ps4_firmware, Rs500a\-E9\-Rs4_firmware, Rs500a\-E9_rs4_u_firmware, Rs520\-E9\-Rs12\-E_firmware, Rs520\-E9\-Rs8_firmware, Rs700\-E9\-Rs12_firmware, Rs700\-E9\-Rs4_firmware, Rs700a\-E9\-Rs12v2_firmware, Rs700a\-E9\-Rs4_firmware, Rs700a\-E9\-Rs4v2_firmware, Rs720\-E9\-Rs12\-E_firmware, Rs720\-E9\-Rs24\-U_firmware, Rs720\-E9\-Rs8\-G_firmware, Rs720a\-E9\-Rs12v2_firmware, Rs720a\-E9\-Rs24\-E_firmware, Rs720a\-E9\-Rs24v2_firmware, Rs720q\-E9\-Rs24\-S_firmware, Rs720q\-E9\-Rs8\-S_firmware, Rs720q\-E9\-Rs8_firmware, Ws_c422_pro\/se_firmware, Ws_c621e_sage_firmware, Ws_x299_pro\/se_firmware, Z11pa\-D8_firmware, Z11pa\-D8c_firmware, Z11pa\-U12\/10g\-2s_firmware, Z11pa\-U12_firmware, Z11pr\-D16_firmware	4.9
2021-04-06	CVE-2021-28208	The specific function in ASUS BMC’s firmware Web management page (Get video file function) does not filter the specific parameter. As obtaining the administrator permission, remote attackers can use the means of path traversal to access system files.	Asmb9\-Ikvm_firmware, E700_g4_firmware, Esc4000_dhd_g4_firmware, Esc4000_g4_firmware, Esc4000_g4x_firmware, Esc8000_g4\/10g_firmware, Esc8000_g4_firmware, Knpa\-U16_firmware, Pro_e800_g4_firmware, Rs100\-E10\-Pi2_firmware, Rs300\-E10\-Ps4_firmware, Rs300\-E10\-Rs4_firmware, Rs500\-E9\-Ps4_firmware, Rs500\-E9\-Rs4\-U_firmware, Rs500\-E9\-Rs4_firmware, Rs500a\-E10\-Ps4_firmware, Rs500a\-E10\-Rs4_firmware, Rs500a\-E9\-Ps4_firmware, Rs500a\-E9\-Rs4_firmware, Rs500a\-E9_rs4_u_firmware, Rs520\-E9\-Rs12\-E_firmware, Rs520\-E9\-Rs8_firmware, Rs700\-E9\-Rs12_firmware, Rs700\-E9\-Rs4_firmware, Rs700a\-E9\-Rs12v2_firmware, Rs700a\-E9\-Rs4_firmware, Rs700a\-E9\-Rs4v2_firmware, Rs720\-E9\-Rs12\-E_firmware, Rs720\-E9\-Rs24\-U_firmware, Rs720\-E9\-Rs8\-G_firmware, Rs720a\-E9\-Rs12v2_firmware, Rs720a\-E9\-Rs24\-E_firmware, Rs720a\-E9\-Rs24v2_firmware, Rs720q\-E9\-Rs24\-S_firmware, Rs720q\-E9\-Rs8\-S_firmware, Rs720q\-E9\-Rs8_firmware, Ws_c422_pro\/se_firmware, Ws_c621e_sage_firmware, Ws_x299_pro\/se_firmware, Z11pa\-D8_firmware, Z11pa\-D8c_firmware, Z11pa\-U12\/10g\-2s_firmware, Z11pa\-U12_firmware, Z11pr\-D16_firmware	4.9