cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2021-27403,https://securityvulnerability.io/vulnerability/CVE-2021-27403,Cross-Site Scripting Vulnerability in Askey RTF8115VW Router,"The devices known as Askey RTF8115VW are susceptible to a Cross-Site Scripting (XSS) vulnerability through the web management interface located at cgi-bin/te_acceso_router.cgi. This issue arises when user input is not properly sanitized, allowing attackers to inject malicious scripts. If exploited, an attacker can potentially manipulate the web interface, gaining unauthorized access to sensitive information or performing actions on behalf of the user.",Asus,Askey Rtf8115vw Firmware,6.1,MEDIUM,0.0013000000035390258,false,,false,false,true,2021-02-18T16:14:48.000Z,true,false,false,,2021-02-19T03:53:19.000Z,0
CVE-2021-27404,https://securityvulnerability.io/vulnerability/CVE-2021-27404,Host HTTP Header Injection Vulnerability in Askey RTF8115VW Devices,The Askey RTF8115VW BR_SV_g11.11_RTF_TEF001_V6.54_V014 device is vulnerable to a host HTTP header injection. This vulnerability could allow an attacker to manipulate responses and conduct phishing attacks or redirect users to malicious sites. Proper validation mechanisms for HTTP headers are essential to safeguard against such attacks.,Asus,Askey Rtf8115vw Firmware,6.1,MEDIUM,0.0015699999639764428,false,,false,false,true,2021-02-18T17:16:39.000Z,true,false,false,,2021-02-19T03:53:07.000Z,0