Improper Administrator IP Validation in Asuswrt Router
CVE-2017-15653

8.8HIGH

Key Information:

Vendor: Asus
Status: Asuswrt
Vendor: CVE Published:; 31 January 2018

What is CVE-2017-15653?

A vulnerability exists in Asus routers running asuswrt due to improper validation of the administrator's IP address after login. This flaw allows an unauthorized user to exploit the existing administrator session token by utilizing a specific User-Agent string. As a result, an attacker could perform unintended actions on the device, posing significant security risks to users. It is crucial for Asus router users to implement security best practices to mitigate potential threats arising from this vulnerability.

References

http://seclists.org/fulldisclosure/2018/Jan/63

mailing-listx_refsource_FULLDISC

http://packetstormsecurity.com/files/145921/ASUSWRT-3.0.0...

x_refsource_MISC

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jan 31, 2018
Vulnerability Reserved
Oct 19, 2017