Lucene search
+L

16 matches found

redhatcve
redhatcve
added 2025/05/23 10:20 a.m.6 views

CVE-2024-28327

Asus RT-N12+ B1 router stores user passwords in plaintext, which could allow local attackers to obtain unauthorized access and modify router settings...

8.4CVSS6.7AI score0.0014EPSS
Exploits0References1
redhatcve
redhatcve
added 2025/05/23 10:20 a.m.11 views

CVE-2024-28328

CSV Injection vulnerability in the Asus RT-N12+ router allows administrator users to inject arbitrary commands or formulas in the client name parameter which can be triggered and executed in a different user session upon exporting to CSV format...

5.4CVSS7.4AI score0.0037EPSS
Exploits0References1
bdu_fstec
bdu_fstec
added 2024/07/08 12:0 a.m.10 views

The vulnerability of ASUS RT-N12+ B1 router’s microprogramming software, related to the lack of data cleaning at the control level, allows attackers to execute arbitrary commands.

The vulnerability of ASUS RT-N12+ B1 router’s microprogramming software is related to the lack of measures taken to protect data at the control level. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands through CSV injection using the client name parameter...

5.4CVSS5.9AI score0.0037EPSS
Exploits0References4
cnvd
cnvd
added 2024/04/29 12:0 a.m.7 views

ASUS RT-N12+ B1 Elevation of Privilege Vulnerability

The ASUS RT-N12+ B1 is a wireless router. An elevation of privilege vulnerability exists in the ASUS RT-N12+ B1, which can be exploited by an attacker to bypass security restrictions caused by incorrect access control and gain root terminal access via the UART interface by sending a specially...

6.8CVSS7.1AI score0.00272EPSS
Exploits0References1
nvd
nvd
added 2024/04/26 8:15 p.m.14 views

CVE-2024-28326

Incorrect Access Control in ASUS RT-N12+ B1 and RT-N12 D1 routers allows local attackers to obtain root terminal access via the the UART interface...

6.8CVSS6.3AI score0.00272EPSS
Exploits0References1
nvd
nvd
added 2024/04/26 7:15 p.m.16 views

CVE-2024-28327

Asus RT-N12+ B1 router stores user passwords in plaintext, which could allow local attackers to obtain unauthorized access and modify router settings...

8.4CVSS6.3AI score0.0014EPSS
Exploits0References1
nvd
nvd
added 2024/04/26 3:15 p.m.23 views

CVE-2024-28328

CSV Injection vulnerability in the Asus RT-N12+ router allows administrator users to inject arbitrary commands or formulas in the client name parameter which can be triggered and executed in a different user session upon exporting to CSV format...

5.4CVSS7AI score0.0037EPSS
Exploits0References2
ptsecurity
ptsecurity
added 2024/04/26 12:0 a.m.7 views

PT-2024-4605 · Asus · Asus Rt-N12+ B1

Name of the Vulnerable Software and Affected Versions: ASUS RT-N12+ B1 version affected versions not specified Description: The issue is related to a lack of data sanitization on the administrative level, allowing for the exploitation of a CSV injection vulnerability. This vulnerability enables a...

5.4CVSS8.2AI score0.0037EPSS
Exploits0References9
vulnrichment
vulnrichment
added 2024/04/26 12:0 a.m.11 views

CVE-2024-28326

Incorrect Access Control in ASUS RT-N12+ B1 and RT-N12 D1 routers allows local attackers to obtain root terminal access via the the UART interface...

6.5AI score0.00272EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2024/04/26 12:0 a.m.14 views

CVE-2024-28325

Asus RT-N12+ B1 router stores credentials in cleartext, which could allow local attackers to obtain unauthorized access and modify router settings...

6.7AI score0.00144EPSS
Exploits0References1
cnnvd
cnnvd
added 2024/04/26 12:0 a.m.8 views

ASUS RT-N12 安全漏洞

The ASUS RT-N12+ B1 is a wireless router. An elevation of privilege vulnerability exists in the ASUS RT-N12+ B1, which can be exploited by an attacker to bypass security restrictions caused by incorrect access control and gain root terminal access via the UART interface by sending a specially...

6.8CVSS7.2AI score0.00272EPSS
Exploits0References3
cvelist
cvelist
added 2024/04/26 12:0 a.m.24 views

CVE-2024-28328

CSV Injection vulnerability in the Asus RT-N12+ router allows administrator users to inject arbitrary commands or formulas in the client name parameter which can be triggered and executed in a different user session upon exporting to CSV format...

7.3AI score0.0037EPSS
Exploits0References1
cvelist
cvelist
added 2024/04/26 12:0 a.m.22 views

CVE-2024-28327

Asus RT-N12+ B1 router stores user passwords in plaintext, which could allow local attackers to obtain unauthorized access and modify router settings...

6.5AI score0.0014EPSS
Exploits0References1
cvelist
cvelist
added 2024/04/26 12:0 a.m.22 views

CVE-2024-28326

Incorrect Access Control in ASUS RT-N12+ B1 and RT-N12 D1 routers allows local attackers to obtain root terminal access via the the UART interface...

6.5AI score0.00272EPSS
Exploits0References1
cve
cve
added 2024/04/26 12:0 a.m.58 views

CVE-2024-28325

The CVE-2024-28325 affects the Asus RT-N12+ B1 router, where credentials are stored in cleartext within the device. This exposes a local attacker to unauthorized access and the ability to modify router settings. The entry cites a Local attack vector with Low attack complexity, requiring Local pri...

6.1CVSS6.6AI score0.00144EPSS
Exploits0References1
cnvd
cnvd
added 2021/05/27 12:0 a.m.3 views

ASUS RT-N12 suffers from a weak password vulnerability

The ASUS RT-N12 is a router device. The ASUS RT-N12 suffers from a weak password vulnerability that can be exploited by an attacker to obtain sensitive information...

6.9AI score
Exploits0
Rows per page
Query Builder