Asus Routers Hit by Command Injection Vulnerability

CVE-2024-42757

Summary

A command injection vulnerability exists in the Asus RT-N15U router firmware version 3.0.0.4.376_3754. This vulnerability allows a remote attacker to exploit the netstat function page to execute arbitrary code on the device. An attacker could potentially leverage this flaw to compromise the router's functionality, leading to unauthorized access to sensitive information or control over the affected device. Users are encouraged to review their router settings and apply any available security updates to mitigate risks associated with this vulnerability.

References