CVE-2021-46109

Severity

6.1MEDIUM

EPSS

0.2%

top 52.72%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Timeline

PublishedJan 3

Latest updateJan 4

Description

Invalid input sanitizing leads to reflected Cross Site Scripting (XSS) in ASUS RT-AC52U_B1 3.0.0.4.380.10931 can lead to a user session hijack.

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:NExploitability: 2.8 | Impact: 2.7

GHSA

GHSA-87g9-qw66-4r63: Invalid input sanitizing leads to reflected Cross Site Scripting (XSS) in ASUS RT-AC52U_B1 3↗2022-01-04

▶

CVEList

CVE-2021-46109: Invalid input sanitizing leads to reflected Cross Site Scripting (XSS) in ASUS RT-AC52U_B1 3↗2022-01-03

▶