CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
Confidence
Low
EPSS
Percentile
52.2%
Cross-site request forgery (CSRF) vulnerability on ASUS JAPAN RT-AC87U routers with firmware 3.0.0.4.378.3754 and earlier, RT-AC68U routers with firmware 3.0.0.4.376.3715 and earlier, RT-AC56S routers with firmware 3.0.0.4.376.3715 and earlier, RT-N66U routers with firmware 3.0.0.4.376.3715 and earlier, and RT-N56U routers with firmware 3.0.0.4.376.3715 and earlier allows remote attackers to hijack the authentication of arbitrary users.
Vendor | Product | Version | CPE |
---|---|---|---|
asus | rt-n66u_firmware | * | cpe:2.3:o:asus:rt-n66u_firmware:*:*:*:*:*:*:*:* |
asus | rt-n66u | - | cpe:2.3:h:asus:rt-n66u:-:*:*:*:*:*:*:* |
asus | rt-n56u_firmware | * | cpe:2.3:o:asus:rt-n56u_firmware:*:*:*:*:*:*:*:* |
asus | rt-n56u | - | cpe:2.3:h:asus:rt-n56u:-:*:*:*:*:*:*:* |
asus | rt-ac87u_firmware | * | cpe:2.3:o:asus:rt-ac87u_firmware:*:*:*:*:*:*:*:* |
asus | rt-ac87u | - | cpe:2.3:h:asus:rt-ac87u:-:*:*:*:*:*:*:* |
asus | rt-ac68u_firmware | * | cpe:2.3:o:asus:rt-ac68u_firmware:*:*:*:*:*:*:*:* |
asus | rt-ac68u | - | cpe:2.3:h:asus:rt-ac68u:-:*:*:*:*:*:*:* |
asus | rt-ac56s_firmware | * | cpe:2.3:o:asus:rt-ac56s_firmware:*:*:*:*:*:*:*:* |
asus | rt-ac56s | - | cpe:2.3:h:asus:rt-ac56s:-:*:*:*:*:*:*:* |