Menu
What's new
By:
Filters Better Search

CVSS High 8.1 - CVE-2015-8960 with firmware 3004.388.8_2

  • SNBForums Code of Conduct

    SNBForums is a community for everyone, no matter what their level of experience.

    Please be tolerant and patient of others, especially newcomers. We are all here to share and learn!

    The rules are simple: Be patient, be nice, be helpful or be gone!

D

datorexpert67

New Around Here

Vulnerability​

NameCVE-2015-8960
Severity
8.1 (High)
QoD75 %
Host192.168.50.1
Location

Detection Result​

The host carries the product: cpe:/a:ietf:transport_layer_security:1.2
It is vulnerable according to: CVE-2015-8960.
The product was found at: 8443/tcp.

The TLS protocol 1.2 and earlier supports the rsa_fixed_dh, dss_fixed_dh, rsa_fixed_ecdh, and ecdsa_fixed_ecdh values for ClientCertificateType but does not directly document the ability to compute the master secret in certain situations with a client secret key and server public key but not a server secret key, which makes it easier for man-in-the-middle attackers to spoof TLS servers by leveraging knowledge of the secret key for an arbitrary installed client X.509 certificate, aka the "Key Compromise Impersonation (KCI)" issue.

Product Detection Result​

Productcpe:/a:ietf:transport_layer_security:1.2
MethodCVE-2015-8960 (OID: CVE-2015-8960)
LogView details of product detection
 
So you really signed up just to post info on a vulnerability that was fixed shortly after it was found - in 2015?
 
@datorexpert67, FYI there is a specific subforum for Asus-Merlin firmware discussion:
www.snbforums.com

Asuswrt-Merlin

Use this forum for posts about all versions of this alternative firmware for ASUS wireless routers
www.snbforums.com www.snbforums.com

If you have a specific question, like for example; is CVE-2015-8960 patched, its wise to ping the firmware developer @RMerlin to see if they can respond. It also helps to check the Asus-Merlin release notes to see if the CVE has already been patched.
 
Do you have any PoC showing how this is actually exploitable? I see the report comes from a scanning tool - these are notorious for generating false positives, as they don`t explicitly test for a vulnerability to be present, but just check for generic parameter such a software version, and assume vulnerability whenever these parameters are found. In the case of this specific CVE, quite a few tools will generate a false positive whenever a service allows TLS 1.2 connections.
 
bennor said:
@datorexpert67, FYI there is a specific subforum for Asus-Merlin firmware discussion:
www.snbforums.com

Asuswrt-Merlin

Use this forum for posts about all versions of this alternative firmware for ASUS wireless routers
www.snbforums.com www.snbforums.com

If you have a specific question, like for example; is CVE-2015-8960 patched, its wise to ping the firmware developer @RMerlin to see if they can respond. It also helps to check the Asus-Merlin release notes to see if the CVE has already been patched.
Click to expand...
Thanks, but nothing in the release notes. I will ping RMerlin.
 
You must log in or register to reply here.
Similar threads
Thread starter Title Forum Replies Date
aru AiMesh Node's CPU usage is relatively high? Asuswrt-Merlin 0
E Fail over Wan = high cpu use? Asuswrt-Merlin 5
U High CPU usage after turning off Wireguard/VPN Asuswrt-Merlin 2
Coldblackice High "ACK Failure Count": what might be causing? Asuswrt-Merlin 0
R High CPU usage AC68U Asuswrt-Merlin 17
N Is this a concern for those of us using Merlin firmware? (CVE-2024-3080) Asuswrt-Merlin 29
RMerlin CVE 2023-50868 and CVE 2023-50387 in dnsmasq when DNSSEC is enabled Asuswrt-Merlin 30

Similar threads

Latest threads

Support SNBForums w/ Amazon

If you'd like to support SNBForums, just use this link and buy anything on Amazon. Thanks!

Sign Up For SNBForums Daily Digest

Get an update of what's new every day delivered to your mailbox. Sign up here!

Members online

Total: 613 (members: 34, guests: 579)
Top