Vulnerability CVE-2022-35401
Published: 2023-01-10

Description:
An authentication bypass vulnerability exists in the get_IFTTTTtoken.cgi functionality of Asus RT-AX82U 3.0.0.4.386_49674-ge182230. A specially-crafted HTTP request can lead to full administrative access to the device. An attacker would need to send a series of HTTP requests to exploit this vulnerability.

Type:

CWE-324

 (Use of a Key Past its Expiration Date)

 References:
https://talosintelligence.com/vulnerability_reports/TALOS-2022-1586
Copyright 2024, cxsecurity.com

 

Back to Top