[CVE ID]
CVE-2024-28351
[PRODUCT]
ASUS RT-AX57
[VERSION]
ASUS RT-AX57 firmware=3.0.0.4.388_ 33114
[PROBLEMTYPE]
CWE-319: Cleartext Transmission of Sensitive Information
[Attack Vectors]
http://121.41.98.87/2023/02/29/1000/
[DESCRIPTION]
The latest firmware version ofASUS RT-AX57 firmware=3.0.0.4.388_ 33114, when logging into the management page, the username and password were not encrypted and only transmitted through Base64 encoding, transmitting sensitive information in almost plaintext.