Awaiting Analysis
CVE has been marked for Analysis. Normally once in this state the CVE will be analyzed by NVD staff within 24 hours.
CVE has been marked for Analysis. Normally once in this state the CVE will be analyzed by NVD staff within 24 hours.
Products
Asus RT-N12+ router
Source
cve@mitre.org
Tags
CVE-2024-28328 details
Published : April 26, 2024, 3:15 p.m.
Last Modified : April 26, 2024, 3:32 p.m.
Last Modified : April 26, 2024, 3:32 p.m.
Description
CSV Injection vulnerability in the Asus RT-N12+ router allows administrator users to inject arbitrary commands or formulas in the client name parameter which can be triggered and executed in a different user session upon exporting to CSV format.
CVSS Score
| 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 |
|---|
Weakness
| Weakness | Name | Description |
|---|
References
| URL | Source |
|---|---|
| http://asus.com | cve@mitre.org |
| https://github.com/ShravanSinghRathore/ASUS-RT-N300-B1/wiki/CSV-Injection-CVE%E2%80%902024%E2%80%9028328 | cve@mitre.org |
This website uses the NVD API, but is not approved or certified by it.