CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2016-6557

In ASUS RP-AC52 access points with firmware version 1.0.1.1s and possibly earlier, the web interface, the web interface does not sufficiently verify whether a valid request was intentionally provided by the user. An attacker can perform actions with the same permissions as a victim user, provided the victim has an active session and is induced to trigger the malicious request.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 29.8%

CVSS Severity

CVSS v3 Score 8.8

CVSS v2 Score 6.8

References

Products affected by CVE-2016-6557

Asus » Ea-N66 » Version: N/A

cpe:2.3:h:asus:ea-n66:-
Asus » Rp-Ac52 » Version: N/A

cpe:2.3:h:asus:rp-ac52:-
Asus » Rp-Ac56 » Version: N/A

cpe:2.3:h:asus:rp-ac56:-
Asus » Rp-N12 » Version: N/A

cpe:2.3:h:asus:rp-n12:-
Asus » Rp-N14 » Version: N/A

cpe:2.3:h:asus:rp-n14:-
Asus » Rp-N53 » Version: N/A

cpe:2.3:h:asus:rp-n53:-
Asus » Wmp-N12 » Version: N/A

cpe:2.3:h:asus:wmp-n12:-
Asus » Ea-N66 Firmware » Version: N/A

cpe:2.3:o:asus:ea-n66_firmware:-
Asus » Rp-Ac52 Firmware » Version: 1.0.1.1s

cpe:2.3:o:asus:rp-ac52_firmware:1.0.1.1s
Asus » Rp-Ac56 Firmware » Version: N/A

cpe:2.3:o:asus:rp-ac56_firmware:-
Asus » Rp-N12 Firmware » Version: N/A

cpe:2.3:o:asus:rp-n12_firmware:-
Asus » Rp-N14 Firmware » Version: N/A

cpe:2.3:o:asus:rp-n14_firmware:-
Asus » Rp-N53 Firmware » Version: N/A

cpe:2.3:o:asus:rp-n53_firmware:-
Asus » Wmp-N12 Firmware » Version: N/A

cpe:2.3:o:asus:wmp-n12_firmware:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2016-6557

Products

Pricing

Contact Us