53 matches found
EUVD-2020-22014
Malware in sbrugna...
EUVD-2020-22013
Malware in sbrugna...
EUVD-2024-29066
Malicious code in bioql PyPI...
EUVD-2024-29063
Malicious code in bioql PyPI...
EUVD-2024-29065
Malicious code in bioql PyPI...
EUVD-2024-29067
Malicious code in bioql PyPI...
EUVD-2024-29064
Malicious code in bioql PyPI...
CVE-2020-29655
An injection vulnerability exists in RT-AC88U Download Master before 3.1.0.108. Accessing MainLogin.asp?flag=1=FOOBAR=/downloadmaster/task.asp will redirect to the login site, which will show the value of the parameter productname within the title. An attacker might be able to influence the...
CVE-2020-29656
An information disclosure vulnerability exists in RT-AC88U Download Master before 3.1.0.108. A direct access to /downloadmaster/dmapply.cgi?actionmode=initialtype=Generalcgi=getlanguage makes it possible to reach "unknown functionality" in a "known to be easy" manner via an unspecified "public...
CVE-2024-3080: ASUS warns Customers about the latest Authentication Bypass Vulnerability detected Across seven Router Models
ASUS announces major Firmware Update ASUS recently issued a firmware update to resolve a critical security vulnerability affecting seven different variants of its router models. Identified as CVE-2024-3080 with a CVSS v3 severity score of 9.8 critical, the vulnerability permits remote attackers t...
ASUS Download Master Cross-Site Scripting Vulnerability
ASUS Download Master is a download program from the Chinese company Asus ASUS. A cross-site scripting vulnerability exists in ASUS Download Master version 3.1.0.113 and earlier versions, which stems from the application's lack of effective filtering and escaping of user-supplied data, and can be...
ASUS Download Master Buffer Overflow Vulnerability
ASUS Download Master is a download program from the Chinese company Asus ASUS. A buffer overflow vulnerability exists in ASUS Download Master. The vulnerability stems from a boundary error when the application handles untrusted input. An attacker could exploit the vulnerability to execute arbitra...
ASUS Download Master Cross-Site Scripting Vulnerability (CNVD-2024-29352)
ASUS Download Master is a download program from the Chinese company Asus ASUS. A security vulnerability exists in ASUS Download Master, which can be exploited by an attacker to execute arbitrary web script or HTML by injecting a crafted payload...
CVE-2024-31162
The specific function parameter of ASUS Download Master does not properly filter user input. An unauthenticated remote attacker with administrative privileges can exploit this vulnerability to execute arbitrary system commands on the device...
CVE-2024-31163
ASUS Download Master has a buffer overflow vulnerability. An unauthenticated remote attacker with administrative privileges can exploit this vulnerability to execute arbitrary system commands on the device...
CVE-2024-31163 ASUS Download Master - Buffer Overflow
ASUS Download Master has a buffer overflow vulnerability. An unauthenticated remote attacker with administrative privileges can exploit this vulnerability to execute arbitrary system commands on the device...
CVE-2024-31163 ASUS Download Master - Buffer Overflow
ASUS Download Master has a buffer overflow vulnerability. An unauthenticated remote attacker with administrative privileges can exploit this vulnerability to execute arbitrary system commands on the device...
CVE-2024-31163
The CVE-2024-31163 entry concerns ASUS Download Master, a Windows utility. The connected sources describe a buffer overflow vulnerability in ASUS Download Master triggered by untrusted input, enabling an unauthenticated remote attacker to execute arbitrary system commands on the device. The issue...
CVE-2024-31162 ASUS Download Master - OS Command Injection
The specific function parameter of ASUS Download Master does not properly filter user input. An unauthenticated remote attacker with administrative privileges can exploit this vulnerability to execute arbitrary system commands on the device...
CVE-2024-31162 ASUS Download Master - OS Command Injection
The specific function parameter of ASUS Download Master does not properly filter user input. An unauthenticated remote attacker with administrative privileges can exploit this vulnerability to execute arbitrary system commands on the device...