CVE-2024-28327

2024-04-2619:15:47

[email protected]

web.nvd.nist.gov

asus router

plaintext password

unauthorized access

modify settings

local attackers

cve-2024-28327

nvd

6.5 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

9.1%

JSON

Asus RT-N12+ B1 router stores user passwords in plaintext, which could allow local attackers to obtain unauthorized access and modify router settings.

References

asus.com

github.com/ShravanSinghRathore/ASUS-RT-N300-B1/wiki/Insecure-Credential-Storage-CVE%E2%80%902024%E2%80%9028327