- EPSS 0.52%
- Published 05.07.2022 12:15:07
- Last modified 21.11.2024 06:29:39
ASUS RT-A88U 3.0.0.4.386_45898 is vulnerable to Cross Site Scripting (XSS). The ASUS router admin panel does not sanitize the WiFI logs correctly, if an attacker was able to change the SSID of the router with a custom payload, they could achieve stor...
CVE-2021-3128
- EPSS 2.48%
- Published 12.04.2021 19:15:14
- Last modified 21.11.2024 06:20:56
In ASUS RT-AX3000, ZenWiFi AX (XT8), RT-AX88U, and other ASUS routers with firmware < 3.0.0.4.386.42095 or < 9.0.0.4.386.41994, when IPv6 is used, a routing loop can occur that generates excessive network traffic between an affected device and its up...
CVE-2020-29656
- EPSS 0.28%
- Published 09.12.2020 08:15:11
- Last modified 21.11.2024 05:24:21
An information disclosure vulnerability exists in RT-AC88U Download Master before 3.1.0.108. A direct access to /downloadmaster/dm_apply.cgi?action_mode=initial&download_type=General&special_cgi=get_language makes it possible to reach "unknown functi...
CVE-2020-29655
- EPSS 0.24%
- Published 09.12.2020 08:15:10
- Last modified 21.11.2024 05:24:21
An injection vulnerability exists in RT-AC88U Download Master before 3.1.0.108. Accessing Main_Login.asp?flag=1&productname=FOOBAR&url=/downloadmaster/task.asp will redirect to the login site, which will show the value of the parameter productname wi...
- EPSS 2.95%
- Published 04.04.2018 19:29:00
- Last modified 21.11.2024 04:15:17
Main_Analysis_Content.asp in /apply.cgi on ASUS RT-AC66U, RT-AC68U, RT-AC86U, RT-AC88U, RT-AC1900, RT-AC2900, and RT-AC3100 devices before 3.0.0.4.384_10007; RT-N18U devices before 3.0.0.4.382.39935; RT-AC87U and RT-AC3200 devices before 3.0.0.4.382....