CVE-2023-39236

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Sep 7, 2023

Updated: Sep 12, 2023

CWE ID 78

Summary

CVE-2023-39236 is a vulnerability affecting the ASUS RT-AC86U Traffic Analyzer. The Statistic function in this tool lacks adequate filtering of special characters, making it susceptible to command injection attacks. A malicious user with regular user privileges can exploit this issue to execute arbitrary commands, potentially causing system disruption or terminating services.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

ASUS

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/sHfe2e
https://www.cve.org/CVERecord?id=CVE-2023-39236
https://nvd.nist.gov/vuln/detail/CVE-2023-39236

Back to Vulnerability Database

CVE-2023-39236

CVSS 3.1 Score 8.8 of 10 (high)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations