CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2020-7492

Malware in sbrugna...

6.1CVSS6.3AI score0.0024EPSS

Exploits0References2

OSV•added 2020/08/26 1:15 p.m.•0 views

CVE-2020-15499

An issue was discovered on ASUS RT-AC1900P routers before 3.0.0.4.38520253. They allow XSS via spoofed Release Notes on the Firmware Upgrade page...

6.1CVSS5.8AI score0.0024EPSS

Exploits0References1

NVD•added 2020/08/26 1:15 p.m.•8 views

CVE-2020-15499

An issue was discovered on ASUS RT-AC1900P routers before 3.0.0.4.38520253. They allow XSS via spoofed Release Notes on the Firmware Upgrade page...

6.1CVSS6AI score0.0024EPSS

Exploits0References1

NVD•added 2020/08/26 1:15 p.m.•11 views

CVE-2020-15498

An issue was discovered on ASUS RT-AC1900P routers before 3.0.0.4.38520253. The router accepts an arbitrary server certificate for a firmware update. The culprit is the --no-check-certificate option passed to wget tool used to download firmware update files...

5.9CVSS5.8AI score0.00107EPSS

Exploits0References1

Prion•added 2020/08/26 1:15 p.m.•10 views

Code injection

An issue was discovered on ASUS RT-AC1900P routers before 3.0.0.4.38520253. They allow XSS via spoofed Release Notes on the Firmware Upgrade page...

4.3CVSS5.9AI score0.0024EPSS

Exploits0References1Affected Software1

CVE•added 2020/08/26 12:5 p.m.•39 views

CVE-2020-15498

CVE-2020-15498 affects ASUS RT-AC1900P routers prior to 3.0.0.4.385_20253. The vulnerability stems from the firmware update mechanism accepting unvalidated server certificates due to the use of wget with the --no-check-certificate option. This enables potential man-in-the-middle scenarios during ...

5.9CVSS5.8AI score0.00107EPSS

Exploits0References1Affected Software1

Cvelist•added 2020/08/26 12:5 p.m.•13 views

CVE-2020-15498

5.8AI score0.00107EPSS

Exploits0References1

CVE•added 2020/08/26 12:3 p.m.•38 views

CVE-2020-15499

The CVE-2020-15499 issue affects ASUS RT-AC1900P routers. A cross-site scripting vulnerability exists in the Firmware Upgrade page’s release notes rendering, enabling injected script when a malicious actor can influence the page (e.g., via a MITM scenario with spoofed release notes). Affected fir...

6.1CVSS5.9AI score0.0024EPSS

Exploits0References1Affected Software1

seebug.org•added 2017/12/26 12:0 a.m.•98 views

Asus_DeleteOfflineClientOverflow

Vulnerability: Stack buffer overflow in httpd ------------------------------------------ Exploitation: Can control the $pc. Use together with a session hijack vulnerability or in a csrf attack, can remote code execution and then get a connectback shell. ------------------------------------------...

9.3CVSS0.1AI score0.24524EPSS

Exploits6

Cvelist•added 2017/07/16 11:0 p.m.•11 views

CVE-2017-11345

Stack buffer overflow in networkmap in Asuswrt-Merlin firmware for ASUS devices and ASUS firmware for ASUS RT-AC5300, RTAC1900P, RT-AC68U, RT-AC68P, RT-AC88U, RT-AC66U, RT-AC66UB1, RT-AC58U, RT-AC56U, RT-AC55U, RT-AC52U, RT-AC51U, RT-N18U, RT-N66U, RT-N56U, RT-AC3200, RT-AC3100, RTAC1200GU,...

8.2AI score0.01327EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by