PT-2023-7185 · Asus · Asus Rt-Ac86U
Published
2023-09-06
·
Updated
2023-09-12
·
CVE-2023-38032
CVSS v2.0
9.0
High
| Vector | AV:N/AC:L/Au:S/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
ASUS RT-AC86U (affected versions not specified)
Description
The ASUS RT-AC86U AiProtection security-related function has insufficient filtering of special characters, allowing a remote attacker with regular user privilege to exploit this issue and perform a command injection attack. This can lead to the execution of arbitrary commands, disruption of the system, or termination of services.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
OS Command Injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Asus Rt-Ac86U