First published: Mon Jan 22 2018(Updated: )
An issue was discovered in AsusWRT before 3.0.0.4.384_10007. In the handle_request function in router/httpd/httpd.c, processing of POST requests continues even if authentication fails.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Asus asuswrt | <3.0.0.4.384_10007 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2018-5999 is a vulnerability in AsusWRT software that allows processing of POST requests even if authentication fails.
CVE-2018-5999 has a severity rating of 9.8 (Critical).
CVE-2018-5999 affects AsusWRT before version 3.0.0.4.384_10007.
To fix CVE-2018-5999, update AsusWRT to version 3.0.0.4.384_10007 or later.
You can find more information about CVE-2018-5999 at the following references: [link1], [link2], [link3].