1. Home
  2. Mapping Frameworks
  3. Known Exploited Vulnerabilities Home
  4. ASUS Routers Improper Authentication Vulnerability

Known Exploited Vulnerabilities CVE-2021-32030

ASUS Lyra Mini and ASUS GT-AC2900 devices contain an improper authentication vulnerability that allows an attacker to gain unauthorized access to the administrative interface. The impacted products could be end-of-life (EoL) and/or end-of-service (EoS). Users should discontinue product utilization.

Mappings

Capability ID Capability Description Mapping Type ATT&CK ID ATT&CK Name Notes
CVE-2021-32030 ASUS Routers Improper Authentication Vulnerability exploitation_technique T1068 Exploitation for Privilege Escalation
Comments
Due to the router's administrative web-app having improper validation of session cookies, an unauthorized user can gain administrative access to the device management interface.
References
  1. https://www.atredis.com/blog/2021/4/30/asus-authentication-bypass
  2. https://dayzerosec.com/vulns/2021/05/11/asus-gt-ac2900-authentication-bypass-cve-2021-32030.html
CVE-2021-32030 ASUS Routers Improper Authentication Vulnerability primary_impact T1040 Network Sniffing
Comments
Due to the router's administrative web-app having improper validation of session cookies, an unauthorized user can gain administrative access to the device management interface.
References
  1. https://www.atredis.com/blog/2021/4/30/asus-authentication-bypass
  2. https://dayzerosec.com/vulns/2021/05/11/asus-gt-ac2900-authentication-bypass-cve-2021-32030.html
CVE-2021-32030 ASUS Routers Improper Authentication Vulnerability primary_impact T1098 Account Manipulation
Comments
Due to the router's administrative web-app having improper validation of session cookies, an unauthorized user can gain administrative access to the device management interface.
References
  1. https://www.atredis.com/blog/2021/4/30/asus-authentication-bypass
  2. https://dayzerosec.com/vulns/2021/05/11/asus-gt-ac2900-authentication-bypass-cve-2021-32030.html