cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2024-31163,https://securityvulnerability.io/vulnerability/CVE-2024-31163,Buffer Overflow Vulnerability in ASUS Download Master Allows Arbitrary System Command Execution,"ASUS Download Master is vulnerable to a buffer overflow attack, which can be exploited by an unauthenticated remote attacker holding administrative privileges. This weakness allows attackers to execute arbitrary system commands on the affected device, posing a significant security threat. Users and administrators of ASUS Download Master should take immediate action to assess their systems and apply necessary mitigations to safeguard against potential exploitation.",Asus,Download Master,7.2,HIGH,0.0004299999854993075,false,false,false,false,,false,false,2024-06-14T06:52:50.331Z,0
CVE-2024-31162,https://securityvulnerability.io/vulnerability/CVE-2024-31162,ASUS Download Master Vulnerability Allows Arbitrary System Command Execution,"The vulnerability in ASUS Download Master arises from inadequate filtering of user input in a specific function parameter. This flaw allows an unauthenticated remote attacker with administrative privileges to exploit the weakness, leading to the execution of arbitrary system commands on the affected device. As a result, this vulnerability poses significant risks, particularly for users relying on this application for file management and sharing. Users are encouraged to apply security patches and follow best practices to mitigate potential security breaches.",Asus,Download Master,7.2,HIGH,0.0004299999854993075,false,false,false,false,,false,false,2024-06-14T06:35:07.192Z,0
CVE-2024-31161,https://securityvulnerability.io/vulnerability/CVE-2024-31161,ASUS Download Master Upload Vulnerability Allows Remote Execution of Arbitrary System Commands,"The upload functionality in ASUS Download Master is improperly handling user inputs, which allows remote attackers with administrative privileges to exploit this vulnerability. By taking advantage of inadequate input filtering, attackers can upload arbitrary files to any location within the system. This includes the potential to upload malicious files to the website directory, enabling them to execute arbitrary system commands when users browse the compromised webpage. Such security oversights highlight the importance of robust input validation and secure file handling procedures to mitigate these risks.",Asus,Download Master,7.2,HIGH,0.0004299999854993075,false,false,false,false,,false,false,2024-06-14T03:53:51.560Z,0
CVE-2024-31160,https://securityvulnerability.io/vulnerability/CVE-2024-31160,ASUS Download Master vulnerable to Stored Cross-site scripting attacks,The parameter used in the certain page of ASUS Download Master is not properly filtered for user input. A remote attacker with administrative privilege can insert JavaScript code to the parameter for Stored Cross-site scripting attacks.,Asus,Download Master,4.8,MEDIUM,0.0004299999854993075,false,false,false,false,,false,false,2024-06-14T03:41:21.402Z,0
CVE-2024-31159,https://securityvulnerability.io/vulnerability/CVE-2024-31159,ASUS Download Master Vulnerable to Reflected Cross-site Scripting Attacks,The parameter used in the certain page of ASUS Download Master is not properly filtered for user input. A remote attacker with administrative privilege can insert JavaScript code to the parameter for Reflected Cross-site scripting attacks.,Asus,Download Master,4.8,MEDIUM,0.0004299999854993075,false,false,false,false,,false,false,2024-06-14T03:25:03.735Z,0