High severity8.8NVD Advisory· Published Apr 7, 2022· Updated Jun 17, 2026
CVE-2022-23972
CVE-2022-23972
Description
ASUS RT-AX56U’s SQL handling function has an SQL injection vulnerability due to insufficient user input validation. An unauthenticated LAN attacker to inject arbitrary SQL code to read, modify and delete database.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2(expand)+ 1 more
- (no CPE)
- (no CPE)range: 3.0.0.4.386.45898
Patches
Vulnerability mechanics
References
1- www.twcert.org.tw/tw/cp-132-5786-d2e86-1.htmlnvdThird Party Advisory
News mentions
0No linked articles in our index yet.