VYPR
Unrated severityNVD Advisory· Published Aug 5, 2022· Updated Apr 15, 2025

CVE-2022-26376

CVE-2022-26376

Description

A memory corruption vulnerability exists in the httpd unescape functionality of Asuswrt prior to 3.0.0.4.386_48706 and Asuswrt-Merlin New Gen prior to 386.7.. A specially-crafted HTTP request can lead to memory corruption. An attacker can send a network request to trigger this vulnerability.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3
  • Asus/Asuswrtllm-create
    Range: < 3.0.0.4.386_48706
  • Rmerl/Asuswrt Merlinllm-fuzzy2 versions
    < 386.7+ 1 more
    • (no CPE)range: < 386.7
    • (no CPE)range: prior to 386.7

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.