CVE-2023-41345

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Nov 3, 2023

Updated: Nov 13, 2023

CWE ID 78

Summary

CVE-2023-41345 is a vulnerability affecting the authentication function of ASUS RT-AX55 routers. The issue stems from insufficient filtering of special characters within the token-generated module, allowing authenticated remote attackers to execute Command Injections. This vulnerability can lead to arbitrary command execution, system disruption, or termination of services. Attackers can exploit this weakness to gain unauthorized access and potentially cause significant damage to affected networks.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

ASUS

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/sfU8cZ
https://www.cve.org/CVERecord?id=CVE-2023-41345
https://nvd.nist.gov/vuln/detail/CVE-2023-41345

Back to Vulnerability Database

CVE-2023-41345

CVSS 3.1 Score 8.8 of 10 (high)

Details

Summary

Affected Vendors

Advisories, Assessments, and Mitigations