It is identified a format string vulnerability in ASUS RT-AX56U V2’s General function API. This vulnerability is caused by lacking validation for a specific value within its apply.cgi module. A remote attacker with administrator privilege can exploit this vulnerability to perform remote arbitrary code execution, arbitrary system operation or disrupt service.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
asus rt-ax55_firmware 3.0.0.4.386_50460 |
||
asus rt-ax56u_v2_firmware 3.0.0.4.386_50460 |
||
asus rt-ac86u_firmware 3.0.0.4_386_51529 |