CSRF in Asus Rt-ac56s

CVE-2014-7270

Cross-site request forgery (CSRF) vulnerability on ASUS JAPAN RT-AC87U routers with firmware 3.0.0.4.378.3754 and earlier, RT-AC68U routers with firmware 3.0.0.4.376.3715 and earlier, RT-AC56S routers with firmware 3.0.0.4.376.3715 and ear…

Vulnerability class: CSRF (Cross-Site Request Forgery)

EPSS: 0.001 (31.5th percentile) — read the EPSS interpretation.

Affected products

Weakness classification (CWE)

CWE-352 — Cross-Site Request Forgery (CSRF)

References

JVN#32631078 (x_refsource_JVN, third-party-advisory, Vendor Advisory)
JVNDB-2015-000012 (x_refsource_JVNDB, third-party-advisory, Vendor Advisory)
vultures@jpcert.or.jp (x_refsource_CONFIRM, Vendor Advisory)