CSV Injection Vulnerability in Asus RT-N12+ Router Allows Arbitrary Commands Execution
CVE-2024-28328
Currently unrated 🤨
Summary
CSV Injection vulnerability in the Asus RT-N12+ router allows administrator users to inject arbitrary commands or formulas in the client name parameter which can be triggered and executed in a different user session upon exporting to CSV format.
References
Timeline
Vulnerability published
Collectors
NVD DatabaseMitre Database