ASUS RT-AC86U’s authentication-related function has a...
High severity
Unreviewed
Published
Nov 3, 2023
to the GitHub Advisory Database
•
Updated Nov 12, 2023
Description
Published by the National Vulnerability Database
Nov 3, 2023
Published to the GitHub Advisory Database
Nov 3, 2023
Last updated
Nov 12, 2023
ASUS RT-AC86U’s authentication-related function has a vulnerability of insufficient filtering of special characters within its token-generated module. An authenticated remote attacker can exploit this vulnerability to perform a Command Injection attack to execute arbitrary commands, disrupt the system, or terminate services.
References