CVE-2013-5948

Name of the Vulnerable Software and Affected Versions ASUS RT-AC68U and other RT series routers versions prior to 3.0.0.4.374.5047

Description The issue allows remote authenticated users to execute arbitrary commands via shell metacharacters in the destIP parameter in the Target field of the Network Analysis tab, which is accessed through the "Main Analysis Content.asp" page.

Recommendations For versions prior to 3.0.0.4.374.5047, update the firmware to version 3.0.0.4.374.5047 or later to resolve the issue. As a temporary workaround, consider restricting access to the Network Analysis tab or avoiding the use of shell metacharacters in the Target field until the firmware is updated.