Beware of DDoS Attacks on your ASUS Router!

CVECVE-2023-34359
CVSScvssV3_1: 7.5
SourceCVE-2023-34359

The ASUS RT-AX88U router is vulnerable to a denial of service (DDoS) attack. A remote attacker can send a specially crafted HTTP request to the router’s web server (httpd) that causes it to crash.

When this request is received, it overwhelms the “do_json_decode()” function in the httpd process. This crucial function is unable to handle the malformed data, causing the entire web server to crash and become unavailable. This results in a DDoS effect, where legitimate users are denied access to the router’s web interface.

Routers are important devices that manage internet access for our homes and small offices. A crashed or unavailable router means lost connectivity for all devices connected to it. It’s important for ASUS RT-AX88U owners to update their router’s firmware to the latest version, which fixes this vulnerability. Regularly checking for and applying security updates is a good practice to help patch vulnerabilities preemptively.

Users should also consider enabling additional authentication on the router’s admin interface like strong passwords. This makes it harder for remote attackers to exploit vulnerabilities without valid credentials. Staying vigilant about router security helps maintain continuous internet access without disruptions.

References