cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2019-15412,https://securityvulnerability.io/vulnerability/CVE-2019-15412,Command Execution Vulnerability in Asus ZenFone 4 Selfie by Asus,"A critical vulnerability exists in the Asus ZenFone 4 Selfie due to a pre-installed app (com.asus.loguploaderproxy) that allows other pre-installed applications to execute commands. This occurs because the app exposes components that can be accessed by any app with the necessary system permissions. As a result, malicious apps from trusted sources can manipulate system functions, raising significant security concerns for users.",Asus,Zenfone 4 Selfie Firmware,7.8,HIGH,0.0004400000034365803,false,,false,false,false,,,false,false,,2019-11-14T16:26:20.000Z,0
CVE-2019-15406,https://securityvulnerability.io/vulnerability/CVE-2019-15406,Command Execution Vulnerability in ASUS Android Device by Asus,"The Asus ASUS_X00LD_3 Android device is compromised by a pre-installed app named com.asus.loguploaderproxy, which enables other pre-installed applications to perform unauthorized command execution. This vulnerability arises from the ability of any pre-installed app to leverage signatureOrSystem permissions and access the app component of the vulnerable application. As a result, potential attackers can exploit this flaw to execute arbitrary commands, compromising the device's security integrity.",Asus,Zenfone 4 Selfie Firmware,7.8,HIGH,0.0004400000034365803,false,,false,false,false,,,false,false,,2019-11-14T16:26:12.000Z,0
CVE-2019-15398,https://securityvulnerability.io/vulnerability/CVE-2019-15398,Command Execution Vulnerability in Asus ZenFone 4 Selfie Device by Asus,"The Asus ZenFone 4 Selfie runs a pre-installed application, com.asus.loguploaderproxy, which exposes a critical command execution vulnerability. This app allows other pre-installed applications on the device to execute commands by leveraging system permissions granted to them. This access can be exploited by malicious apps that obtain the same signature or system permissions, enabling unauthorized actions and potentially compromising the integrity and security of user data.",Asus,Zenfone 4 Selfie Firmware,7.8,HIGH,0.0004400000034365803,false,,false,false,false,,,false,false,,2019-11-14T16:26:00.000Z,0
CVE-2019-15392,https://securityvulnerability.io/vulnerability/CVE-2019-15392,Security Flaw in Asus ZenFone 4 Selfie Android Device with Pre-installed Application,"A security issue affects the Asus ZenFone 4 Selfie Android device due to a pre-installed application that permits any co-located app to modify system properties through an exported interface without appropriate authorization. This vulnerability could enable malicious applications to change key system parameters, potentially compromising the device's integrity and security.",Asus,Zenfone 4 Selfie Firmware,5.5,MEDIUM,0.0004400000034365803,false,,false,false,false,,,false,false,,2019-11-14T16:25:52.000Z,0
CVE-2019-15391,https://securityvulnerability.io/vulnerability/CVE-2019-15391,Improper Authorization in Asus ZenFone 4 Selfie Pre-installed App,"A vulnerability exists in the Asus ZenFone 4 Selfie where a pre-installed app allows co-located applications to modify system properties without proper authorization. This issue arises from the application's exported interface, which can be exploited by malicious apps present on the device, leading to unauthorized alterations in system settings.",Asus,Zenfone 4 Selfie Firmware,5.5,MEDIUM,0.0004400000034365803,false,,false,false,false,,,false,false,,2019-11-14T16:25:50.000Z,0