6.5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:S/C:P/I:P/A:P
0.003 Low
EPSS
Percentile
68.1%
Multiple wireless LAN routers provided by ASUS JAPAN Inc. contain an OS command injection vulnerability.
An arbitrary OS command may be executed by an authenticated attacker.
In addition, when this vulnerability is exploited along with the vulnerability stated in JVN#32631078, an arbitrary OS command may be executed if a logged in user views a malicious page.
Update the Firmware
Apply the appropriate firmware update provided by the developer.