Asus Rp-Ac52 Firmware vulnerabilities
2 known vulnerabilities affecting asus/rp-ac52_firmware.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH1
Vulnerabilities
Page 1 of 1
CVE-2016-6558P2CRITICALCVSS 9.8≤ 1.0.1.1s2018-07-13
CVE-2016-6558 [CRITICAL] CWE-77 CVE-2016-6558: A command injection vulnerability exists in apply.cgi on the ASUS RP-AC52 access point, firmware ver
A command injection vulnerability exists in apply.cgi on the ASUS RP-AC52 access point, firmware version 1.0.1.1s and possibly earlier, web interface specifically in the action_script parameter. The action_script parameter specifies a script to be executed if the action_mode parameter does not contain a valid state. If the input provided by action_sc
nvd
CVE-2016-6557P3HIGHCVSS 8.8≤ 1.0.1.1s2018-07-13
CVE-2016-6557 [HIGH] CWE-352 CVE-2016-6557: In ASUS RP-AC52 access points with firmware version 1.0.1.1s and possibly earlier, the web interface
In ASUS RP-AC52 access points with firmware version 1.0.1.1s and possibly earlier, the web interface, the web interface does not sufficiently verify whether a valid request was intentionally provided by the user. An attacker can perform actions with the same permissions as a victim user, provided the victim has an active session and is induced to trigge
nvd