Cloud Defense Logo

Products

Solutions

Company

CVE-2020-15498 : Security Advisory and Response

Discover the vulnerability in ASUS RT-AC1900P routers allowing arbitrary server certificates for firmware updates. Learn the impact, affected versions, and mitigation steps.

An issue was discovered on ASUS RT-AC1900P routers before 3.0.0.4.385_20253. The router accepts an arbitrary server certificate for a firmware update. The culprit is the --no-check-certificate option passed to wget tool used to download firmware update files.

Understanding CVE-2020-15498

This CVE identifies a vulnerability in ASUS RT-AC1900P routers that allows the acceptance of arbitrary server certificates for firmware updates.

What is CVE-2020-15498?

The vulnerability in ASUS RT-AC1900P routers enables the acceptance of unauthorized server certificates during firmware updates, potentially exposing users to security risks.

The Impact of CVE-2020-15498

This vulnerability could be exploited by attackers to introduce malicious firmware updates, leading to unauthorized access, data theft, or further compromise of the affected routers.

Technical Details of CVE-2020-15498

This section provides detailed technical information about the vulnerability.

Vulnerability Description

The issue arises from the router's acceptance of arbitrary server certificates due to the --no-check-certificate option used in the wget tool for downloading firmware updates.

Affected Systems and Versions

        Product: ASUS RT-AC1900P routers
        Versions Affected: Before 3.0.0.4.385_20253

Exploitation Mechanism

Attackers can exploit this vulnerability by providing a malicious server certificate during a firmware update, potentially leading to unauthorized access or control of the router.

Mitigation and Prevention

Protecting against CVE-2020-15498 involves taking immediate and long-term security measures.

Immediate Steps to Take

        Disable automatic firmware updates on affected routers.
        Regularly check for official firmware updates from ASUS.
        Implement network segmentation to isolate vulnerable devices.

Long-Term Security Practices

        Enable firmware update verification mechanisms on routers.
        Monitor network traffic for any suspicious activities.
        Educate users on the importance of verifying firmware sources.

Patching and Updates

        Update affected ASUS RT-AC1900P routers to version 3.0.0.4.385_20253 or newer to mitigate the vulnerability.

Popular CVEs

CVE Id

Published Date

Is your System Free of Underlying Vulnerabilities?
Find Out Now