CVE-2023-41346
CVSS 3.1 Score 8.8 of 10 (high)
Details
Published Nov 3, 2023
Updated: Nov 13, 2023
CWE ID 78
Summary
CVE-2023-41346 is a vulnerability affecting the authentication function of ASUS RT-AX55 routers.The token-refresh module fails to adequately filter special characters, enabling authenticated remote attackers to execute Command Injections. This issue allows attackers to disrupt system operations or terminate services by injecting arbitrary commands. Successful exploitation can lead to significant system compromise.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Vendors
- ASUS