CVE-2021-41437 Information

Description

An HTTP response splitting attack in web application in ASUS RT-AX88U before v3.0.0.4.388.20558 allows an attacker to craft a specific URL that if an authenticated victim visits it the URL will give access to the cloud storage of the attacker.

Reference

https://github.com/efchatz/easy-exploits/tree/main/Web/ASUS/CVE-2021-41437 https://www.asus.com/Networking-IoT-Servers/WiFi-Routers/ASUS-Gaming-Routers/RT-AX88U/HelpDesk_BIOS/