What is the severity of CVE-2016-6557?

CVE-2016-6557 is classified as a high severity vulnerability due to potential unauthorized actions by attackers.

How do I fix CVE-2016-6557?

To fix CVE-2016-6557, update the ASUS RP-AC52 access point firmware to a version later than 1.0.1.1s.

What types of devices are affected by CVE-2016-6557?

CVE-2016-6557 affects the ASUS RP-AC52 access point specifically with firmware version 1.0.1.1s and possibly earlier versions.

What kind of attacks can CVE-2016-6557 enable?

CVE-2016-6557 can enable attackers to perform unauthorized actions with the same permissions as legitimate users.

Is there a workaround for CVE-2016-6557?

There are no specific workarounds for CVE-2016-6557; updating the firmware is the recommended action.

Vulnerability/
CVE-2016-6557

high

8.8

CWE

352

13/7/2018

6/8/2024

CVE-2016-6557: The ASUS RP-AC52 access point, firmware version 1.0.1.1s and possibly earlier, is vulnerable to cross-site request forgery

First published: Fri Jul 13 2018(Updated: )

In ASUS RP-AC52 access points with firmware version 1.0.1.1s and possibly earlier, the web interface, the web interface does not sufficiently verify whether a valid request was intentionally provided by the user. An attacker can perform actions with the same permissions as a victim user, provided the victim has an active session and is induced to trigger the malicious request.

Credit: cret@cert.org

Affected Software	Affected Version	How to fix
Asus RP-AC52 Firmware	<=1.0.1.1s
Asus RP-AC52 Firmware
Asus EA-N66
E-annu
Asus WMP-N12
Asus RP-N12 Firmware
Asus RP-N14
Asus RP-N14
Asus Rp-n53
Asus Rp-n53 Firmware
Asus RP-AC56
Asus RP-AC56
Asus WMP-N12
Asus WMP-N12 Firmware

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2016-6557?
CVE-2016-6557 is classified as a high severity vulnerability due to potential unauthorized actions by attackers.
How do I fix CVE-2016-6557?
To fix CVE-2016-6557, update the ASUS RP-AC52 access point firmware to a version later than 1.0.1.1s.
What types of devices are affected by CVE-2016-6557?
CVE-2016-6557 affects the ASUS RP-AC52 access point specifically with firmware version 1.0.1.1s and possibly earlier versions.
What kind of attacks can CVE-2016-6557 enable?
CVE-2016-6557 can enable attackers to perform unauthorized actions with the same permissions as legitimate users.
Is there a workaround for CVE-2016-6557?
There are no specific workarounds for CVE-2016-6557; updating the firmware is the recommended action.

agent/type
agent/references
collector/mitre-cve
source/MITRE
agent/weakness
agent/severity
agent/author
agent/title
agent/last-modified-date
agent/description
agent/first-publish-date
agent/event
agent/source
agent/softwarecombine
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/asus
canonical/asus rp-ac52 firmware
version/asus rp-ac52 firmware/1.0.1.1s
canonical/asus ea-n66
canonical/e-annu
canonical/asus wmp-n12
canonical/asus rp-n12 firmware
canonical/asus rp-n14
canonical/asus rp-n53
canonical/asus rp-n53 firmware
canonical/asus rp-ac56
canonical/asus wmp-n12 firmware

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.