CVE-2023-41346 Information

Description

ASUS RT-AX55’s authentication-related function has a vulnerability of insufficient filtering of special characters within its token-refresh module. An authenticated remote attacker can exploit this vulnerability to perform a Command Injection attack to execute arbitrary commands disrupt the system or terminate services.

Reference

https://www.twcert.org.tw/tw/cp-132-7497-f92ac-1.html