Unrated severityNVD Advisory· Published Jun 13, 2023· Updated Jan 3, 2025
CVE-2023-31195
CVE-2023-31195
Description
ASUS Router RT-AX3000 Firmware versions prior to 3.0.0.4.388.23403 uses sensitive cookies without 'Secure' attribute. When an attacker is in a position to be able to mount a man-in-the-middle attack, and a user is tricked to log into the affected device through an unencrypted ('http') connection, the user's session may be hijacked.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: Firmware versions prior to 3.0.0.4.388.23403
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.