cvedb.io
CVE-2021-43702
CRITICAL · CVSS 9
EPSS exploitation probability: 0%
Published 2022-07-05T12:15:07.830 · Last modified 2026-06-17T04:11:18.013

Summary

ASUS RT-A88U 3.0.0.4.386_45898 is vulnerable to Cross Site Scripting (XSS). The ASUS router admin panel does not sanitize the WiFI logs correctly, if an attacker was able to change the SSID of the router with a custom payload, they could achieve stored XSS on the device.

Affected products

asus — zenwifi_xd4s_firmware

Does this affect you?

Add your gear to cvedb and we'll alert you only when asus ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.