News How a code re-use issue led to vulnerabilities in AsusWrt(-Merlin) and multiple other products

[XIII]

Vulnerability Spotlight: How a code re-use issue led to vulnerabilities across multiple products

Recently, I was performing some research on a wireless router and noticed the following piece of code: This unescape function will revert the URL encoded bytes to its original form. But something specifically caught my attention: There was no size check for the performed operations and the...

blog.talosintelligence.com

 

[Jaime Alvarez]

The one affecting Asuswrt is CVE-2022-26376. Judging from the report, if your firmware is ASUS 3.0.0.4.386_48706 / Merlin 386.1 or later you are not vulnerable.

 

[RMerlin]

Talos contacted me at the time to notify me of the CVE-2022-26376 issue, and I fixed it with 386.7. The Talos report is slightly inaccurate there as it mentions 386.1 instead. I'll contact them about that.