ASUS GT-AXE11000, RT-AX3000, RT-AX55, RT-AX58U, TUF-AX3000 - Improper Authentication

Vulnerability

CVE-2021-37910 affects ASUS routers (GT-AXE11000, RT-AX3000, RT-AX55, RT-AX58U, TUF-AX3000) running firmware versions prior to v3.0.0.4.386.45898. The vulnerability lies in the Wi-Fi protected access protocols (WPA2 and WPA3-SAE) and is categorized as an improper control of interaction frequency [1]. This allows an unauthenticated remote attacker to send specially crafted SAE authentication frames to interrupt other users' connections.

Exploitation

An unauthenticated attacker can exploit this vulnerability remotely without any prior authentication or user interaction. The attacker crafts and transmits specific SAE authentication frames during the wireless authentication process. By repeatedly sending these frames, the attacker can interfere with the authentication of legitimate users, causing their connections to be disrupted [1]. The attack requires network proximity to the target router to send wireless frames.

Impact

Successful exploitation allows an attacker to remotely disconnect other users' Wi-Fi sessions, resulting in a denial of service (availability impact). The CVSS v3.1 base score is 3.7 (Low) with a vector of AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L [1]. No confidentiality or integrity impact is described; only a limited impact on availability.

Mitigation

ASUS has released firmware version v3.0.0.4.386.45898 that fixes the vulnerability for all affected models [1]. Users are advised to update their router firmware to this version or later. No workaround is mentioned in the available references, and the CVE is not listed in the CISA Known Exploited Vulnerabilities (KEV) catalog based on the provided information.