Rt-ax88u Firmware Security Vulnerabilities and Issues — Rt-ax88u Firmware CVE List

Lucene search

AsusRt-ax88u Firmware

4 matches found

CVE•added 2022/07/05 12:15 p.m.•114 views

CVE-2021-43702

ASUS RT-A88U 3.0.0.4.386_45898 is vulnerable to Cross Site Scripting (XSS). The ASUS router admin panel does not sanitize the WiFI logs correctly, if an attacker was able to change the SSID of the router with a custom payload, they could achieve stored XSS on the device.

9CVSS8.5AI score0.0052EPSS

CVE•added 2022/04/22 7:15 a.m.•80 views

CVE-2022-26674

ASUS RT-AX88U has a Format String vulnerability, which allows an unauthenticated remote attacker to write to arbitrary memory address and perform remote arbitrary code execution, arbitrary system operation or disrupt service.

9.8CVSS9.8AI score0.04547EPSS

CVE•added 2022/04/22 7:15 a.m.•66 views

CVE-2022-26673

ASUS RT-AX88U has insufficient filtering for special characters in the HTTP header parameter. A remote attacker with general user privilege can exploit this vulnerability to inject JavaScript and perform Stored Cross-Site Scripting (XSS) attacks.

5.4CVSS5.3AI score0.0021EPSS

CVE•added 2022/09/26 2:15 p.m.•62 views

CVE-2021-41437

An HTTP response splitting attack in web application in ASUS RT-AX88U before v3.0.0.4.388.20558 allows an attacker to craft a specific URL that if an authenticated victim visits it, the URL will give access to the cloud storage of the attacker.

6.5CVSS6.3AI score0.00969EPSS