// For flags

CVE-2014-7270

 

Severity Score

6.8
*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

Cross-site request forgery (CSRF) vulnerability on ASUS JAPAN RT-AC87U routers with firmware 3.0.0.4.378.3754 and earlier, RT-AC68U routers with firmware 3.0.0.4.376.3715 and earlier, RT-AC56S routers with firmware 3.0.0.4.376.3715 and earlier, RT-N66U routers with firmware 3.0.0.4.376.3715 and earlier, and RT-N56U routers with firmware 3.0.0.4.376.3715 and earlier allows remote attackers to hijack the authentication of arbitrary users.

Vulnerabilidad de CSRF en los routers ASUS JAPAN RT-AC87U con firmware 3.0.0.4.378.3754 y anteriores, los routers RT-AC68U con firmware 3.0.0.4.376.3715 y anteriores, los routers RT-AC56S con firmware 3.0.0.4.376.3715 y anteriores, los routers RT-N66U con firmware 3.0.0.4.376.3715 y anteriores, y los routers RT-N56U con firmware 3.0.0.4.376.3715 y anteriores permite a atacantes remotos secuestrar la autenticación de usuarios arbitrarios.

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
Medium
Authentication
None
Confidentiality
Partial
Integrity
Partial
Availability
Partial
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2014-09-30 CVE Reserved
  • 2015-02-01 CVE Published
  • 2023-03-07 EPSS Updated
  • 2024-08-06 CVE Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
  • CWE-352: Cross-Site Request Forgery (CSRF)
CAPEC
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Asus
Search vendor "Asus"
Rt-n66u Firmware
Search vendor "Asus" for product "Rt-n66u Firmware"
<= 3.0.0.4.376.3715
Search vendor "Asus" for product "Rt-n66u Firmware" and version " <= 3.0.0.4.376.3715"
-
Affected
in Asus
Search vendor "Asus"
Rt-n66u
Search vendor "Asus" for product "Rt-n66u"
--
Affected
Asus
Search vendor "Asus"
Rt-n56u Firmware
Search vendor "Asus" for product "Rt-n56u Firmware"
<= 3.0.0.4.376.3715
Search vendor "Asus" for product "Rt-n56u Firmware" and version " <= 3.0.0.4.376.3715"
-
Affected
in Asus
Search vendor "Asus"
Rt-n56u
Search vendor "Asus" for product "Rt-n56u"
--
Affected
Asus
Search vendor "Asus"
Rt-ac87u Firmware
Search vendor "Asus" for product "Rt-ac87u Firmware"
<= 3.0.0.4.378.3754
Search vendor "Asus" for product "Rt-ac87u Firmware" and version " <= 3.0.0.4.378.3754"
-
Affected
in Asus
Search vendor "Asus"
Rt-ac87u
Search vendor "Asus" for product "Rt-ac87u"
--
Affected
Asus
Search vendor "Asus"
Rt-ac68u Firmware
Search vendor "Asus" for product "Rt-ac68u Firmware"
<= 3.0.0.4.376.3715
Search vendor "Asus" for product "Rt-ac68u Firmware" and version " <= 3.0.0.4.376.3715"
-
Affected
in Asus
Search vendor "Asus"
Rt-ac68u
Search vendor "Asus" for product "Rt-ac68u"
--
Affected
Asus
Search vendor "Asus"
Rt-ac56s Firmware
Search vendor "Asus" for product "Rt-ac56s Firmware"
<= 3.0.0.4.376.3715
Search vendor "Asus" for product "Rt-ac56s Firmware" and version " <= 3.0.0.4.376.3715"
-
Affected
in Asus
Search vendor "Asus"
Rt-ac56s
Search vendor "Asus" for product "Rt-ac56s"
--
Affected