CVE-2023-38033
published 2023-09-07CVE-2023-38033: ASUS RT-AC86U unused Traffic Analyzer legacy Statistic function has insufficient filtering of special character. A remote attacker with regular user privilege…
high8.8CVSS 3.1
AVNACLPRLUINSUCHIHAH
ASUS RT-AC86U unused Traffic Analyzer legacy Statistic function has insufficient filtering of special character. A remote attacker with regular user privilege can exploit this vulnerability to perform command injection attack to execute arbitrary commands, disrupt system or terminate services.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| asus | rt-ac86u | — | — |
| asus | rt-ac86u_firmware | — | — |