漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
Vulnerability Title
ASUS RT-AX55 - command injection - 1
Vulnerability Description
ASUS RT-AX55’s authentication-related function has a vulnerability of insufficient filtering of special characters within its token-generated module. An authenticated remote attacker can exploit this vulnerability to perform a Command Injection attack to execute arbitrary commands, disrupt the system, or terminate services.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Vulnerability Type
OS命令中使用的特殊元素转义处理不恰当(OS命令注入)
Vulnerability Title
ASUS RT-AX55 安全漏洞
Vulnerability Description
ASUS RT-AX55是中国华硕(ASUS)公司的一款双频 Wi-Fi 路由器。 ASUS RT-AX55 存在安全漏洞,该漏洞源于认证相关功能的 token-generated 模块存在特殊字符过滤不充分问题。攻击者利用该漏洞可以造成命令注入、任意命令执行、系统破坏或拒绝服务。
CVSS Information
N/A
Vulnerability Type
N/A