CVE-2014-7270

Name of the Vulnerable Software and Affected Versions ASUS RT-AC87U routers versions 3.0.0.4.378.3754 and earlier ASUS RT-AC68U routers versions 3.0.0.4.376.3715 and earlier ASUS RT-AC56S routers versions 3.0.0.4.376.3715 and earlier ASUS RT-N66U routers versions 3.0.0.4.376.3715 and earlier ASUS RT-N56U routers versions 3.0.0.4.376.3715 and earlier

Description A cross-site request forgery (CSRF) issue allows remote attackers to hijack the authentication of arbitrary users. This can be exploited by tricking a user into performing unintended actions on the router.

Recommendations For ASUS RT-AC87U routers versions 3.0.0.4.378.3754 and earlier, update the firmware to a version later than 3.0.0.4.378.3754. For ASUS RT-AC68U routers versions 3.0.0.4.376.3715 and earlier, update the firmware to a version later than 3.0.0.4.376.3715. For ASUS RT-AC56S routers versions 3.0.0.4.376.3715 and earlier, update the firmware to a version later than 3.0.0.4.376.3715. For ASUS RT-N66U routers versions 3.0.0.4.376.3715 and earlier, update the firmware to a version later than 3.0.0.4.376.3715. For ASUS RT-N56U routers versions 3.0.0.4.376.3715 and earlier, update the firmware to a version later than 3.0.0.4.376.3715.