[NetworkSEC NWSSA] CVE-2023-26602: ASUS ASMB8 iKVM RCE and SSH Root Access

Read Time:18 Second

Posted by Peter Ohm on Feb 27

++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
# Exploit Title: ASUS ASMB8 iKVM RCE and SSH Root Access
# Date: 2023-02-16
# Exploit Author: d1g () segfault net for NetworkSEC [NWSSA-002-2023]
# Vendor Homepage: https://servers.asus.com/search?q=ASMB8
# Version/Model: ASMB8 iKVM Firmware <= 1.14.51 (probably others)
# Tested on: Linux AMI2CFDA1C7570E 2.6.28.10-ami…

linenoise-1.0-12.20200312git97d2850.fc42

FEDORA-2025-b83972992e Packages in this update: linenoise-1.0-12.20200312git97d2850.fc42 Update description: CVE-2025-9810 Read More

September 6, 2025

linenoise-1.0-9.20200312git97d2850.fc41

FEDORA-2025-cbe2e6c8ce Packages in this update: linenoise-1.0-9.20200312git97d2850.fc41 Update description: CVE-2025-9810 Read More

September 6, 2025

linenoise-1.0-3.20200312git97d2850.el9

FEDORA-EPEL-2025-e35c40aadd Packages in this update: linenoise-1.0-3.20200312git97d2850.el9 Update description: CVE-2025-9810 Read More

September 6, 2025

linenoise-1.0-2.20200312git97d2850.el8

FEDORA-EPEL-2025-8a558394ca Packages in this update: linenoise-1.0-2.20200312git97d2850.el8 Update description: CVE-2025-9810 Read More

September 6, 2025

webkitgtk-2.49.90-3.el10_1

FEDORA-EPEL-2025-bfa97edd0c Packages in this update: webkitgtk-2.49.90-3.el10_1 Update description: Fixup sources file Read More

September 6, 2025

buildah-1.41.4-1.fc43 containers-common-0.64.2-1.fc43 podman-5.6.1-1.fc43

FEDORA-2025-b93734b6b8 Packages in this update: buildah-1.41.4-1.fc43 containers-common-0.64.2-1.fc43 podman-5.6.1-1.fc43 Update description: Security fix for CVE-2025-9566 Automatic update for containers-common-0.64.2-1.fc43, buildah-1.41.4-1.fc43, podman-5.6.1-1.fc43....

September 5, 2025

GOP Cries Censorship Over Spam Filters That Work

Friday Squid Blogging: The Origin and Propagation of Squid

My Latest Book: Rewiring Democracy

Bridgestone Confirms “Limited Cyber Incident” Impacting Facilities in North America

Germany charges hacker with Rosneft cyberattack in latest wake-up call for critical infrastructure

Parents warned that robot toys spied on children’s location without consent

South Carolina School District Data Breach Affects 31,000 People

macOS Stealer Campaign Uses “Cracked” App Lures to Bypass Apple Security

GPT-4o-mini Falls for Psychological Manipulation

[NetworkSEC NWSSA] CVE-2023-26602: ASUS ASMB8 iKVM RCE and SSH Root Access

linenoise-1.0-12.20200312git97d2850.fc42

linenoise-1.0-9.20200312git97d2850.fc41

linenoise-1.0-3.20200312git97d2850.el9

linenoise-1.0-2.20200312git97d2850.el8

webkitgtk-2.49.90-3.el10_1

buildah-1.41.4-1.fc43 containers-common-0.64.2-1.fc43 podman-5.6.1-1.fc43