cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2020-15498,https://securityvulnerability.io/vulnerability/CVE-2020-15498,Arbitrary Server Certificate Acceptance in ASUS RT-AC1900P Routers,"ASUS RT-AC1900P routers are vulnerable to an issue where they will accept any arbitrary server certificate presented during the firmware update process. This occurs due to the --no-check-certificate option being used when the wget tool fetches firmware update files, opening the door for potential man-in-the-middle attacks. Users are advised to ensure their router's firmware is updated to the latest version to mitigate this risk.",Asus,Rt-ac1900p Firmware,5.9,MEDIUM,0.0006600000197067857,false,,false,false,false,,,false,false,,2020-08-26T12:05:26.000Z,0
CVE-2020-15499,https://securityvulnerability.io/vulnerability/CVE-2020-15499,Cross-Site Scripting Vulnerability in ASUS RT-AC1900P Routers,"The ASUS RT-AC1900P routers, prior to version 3.0.0.4.385_20253, exhibit a cross-site scripting (XSS) vulnerability that enables attackers to inject malicious scripts through spoofed Release Notes on the Firmware Upgrade interface. This flaw potentially allows unauthorized access to sensitive user data and malicious redirection to harmful sites.",Asus,Rt-ac1900p Firmware,6.1,MEDIUM,0.0006200000061653554,false,,false,false,false,,,false,false,,2020-08-26T12:03:54.000Z,0