Vulnerability Details CVE-2023-29772
A Cross-site scripting (XSS) vulnerability in the System Log/General Log page of the administrator web UI in ASUS RT-AC51U wireless router firmware version up to and including 3.0.0.4.380.8591 allows remote attackers to inject arbitrary web script or HTML via a malicious network request.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.026
EPSS Ranking 84.7%
CVSS Severity
CVSS v3 Score 5.2
References
Products affected by CVE-2023-29772
-
cpe:2.3:h:asus:rt-ac51u:-
-
cpe:2.3:o:asus:rt-ac51u_firmware:3.0.0.4.380.8228
-
cpe:2.3:o:asus:rt-ac51u_firmware:3.0.0.4.380.8591