ASUS RT-AX56U’s SQL handling function has an SQL injection vulnerability due to insufficient user input validation. An unauthenticated LAN attacker to inject arbitrary SQL code to read, modify and delete database.
CPE | Name | Operator | Version |
---|---|---|---|
rt-ax56u_firmware | eq | 3.0.0.4.386.45898 |