CSV Injection Vulnerability in Asus RT-N12+ Router Allows Arbitrary Commands Execution

CVE-2024-28328

Currently unrated 🤨

Key Information

Vendor
Asus
Vendor
CVE Published:
26 April 2024

Summary

CSV Injection vulnerability in the Asus RT-N12+ router allows administrator users to inject arbitrary commands or formulas in the client name parameter which can be triggered and executed in a different user session upon exporting to CSV format.

References

Timeline

  • Vulnerability published

Collectors

NVD DatabaseMitre Database
.