Vulnerability Details CVE-2023-41347
ASUS RT-AX55’s authentication-related function has a vulnerability of insufficient filtering of special characters within its check token module. An authenticated remote attacker can exploit this vulnerability to perform a Command Injection attack to execute arbitrary commands, disrupt the system or terminate services.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.009
EPSS Ranking 74.2%
CVSS Severity
CVSS v3 Score 8.8
References
Products affected by CVE-2023-41347
-
cpe:2.3:h:asus:rt-ax55:-
-
cpe:2.3:o:asus:rt-ax55_firmware:3.0.0.4.386.51598