Unrated severityNVD Advisory· Published Jun 14, 2024· Updated Aug 2, 2024
ASUS Download Master - Stored XSS
CVE-2024-31160
Description
The parameter used in the certain page of ASUS Download Master is not properly filtered for user input. A remote attacker with administrative privilege can insert JavaScript code to the parameter for Stored Cross-site scripting attacks.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2(expand)+ 1 more
- (no CPE)
- (no CPE)range: earlier
Patches
Vulnerability mechanics
References
2- www.twcert.org.tw/en/cp-139-7864-d7a0d-2.htmlmitrethird-party-advisory
- www.twcert.org.tw/tw/cp-132-7863-49a2d-1.htmlmitrethird-party-advisory
News mentions
0No linked articles in our index yet.