Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple XML external entity (XXE) vulnerabilities in the AiCloud feature on ASUS DSL-AC51, DSL-AC52U, DSL-AC55U, DSL-N55U C1, DSL-N55U D1, DSL-AC56U, DSL-N10_C1, DSL-N12U C1, DSL-N12E C1, DSL-N14U, DSL-N14U-B1, DSL-N16, DSL-N16U, DSL-N17U, DSL-N66U, and DSL-AC750 routers allow remote authenticated users to read arbitrary files via a crafted DTD in (1) an UPDATEACCOUNT or (2) a PROPFIND request.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
多款ASUS路由器安全漏洞
Vulnerability Description
ASUS DSL-AC51等都是华硕(ASUS)公司的无线路由器产品。 多款ASUS路由器中的AiCloud功能存在XML外部实体注入漏洞。远程攻击者可借助UPDATEACCOUNT或PROPFIND请求中特制的DTD利用该漏洞读取任意文件。以下产品受到影响:ASUS DSL-AC51;DSL-AC52U;DSL-AC55U;DSL-N55U C1;DSL-N55U D1;DSL-AC56U;DSL-N10_C1;DSL-N12U C1;DSL-N12E C1;DSL-N14U;DSL-N14U-B1;D
CVSS Information
N/A
Vulnerability Type
N/A