Latest Vulnerabilities Affecting Asus products

Date	CVE	Title	CVSS
2019-05-13	CVE-2018-14711	Cross-Site Request Forgery (CSRF) vulnerability in Asus RT Ac3200 Firmware 3.0.0.4.382.50010	Medium
2019-05-13	CVE-2018-14710	Cross-Site Scripting (XSS) vulnerability in Asus RT Ac3200 Firmware 3.0.0.4.382.50010	Medium
2019-05-13	CVE-2018-14712	Buffer Errors vulnerability in Asus RT Ac3200 Firmware 3.0.0.4.382.50010	Medium
2019-05-13	CVE-2018-14713	Format String Vulnerability vulnerability in Asus RT Ac3200 Firmware 3.0.0.4.382.50010	Medium
2019-05-13	CVE-2018-14714	Command Injection vulnerability in Asus RT Ac3200 Firmware 3.0.0.4.382.50010	High
2019-04-25	CVE-2018-14980	Command Injection vulnerability in Asus Zenfone 3 MAX Firmware	Low
2019-04-25	CVE-2018-14993	Command Injection vulnerability in Asus Zenfone 3 MAX Firmware and Zenfone V Live Firmware	High
2018-12-28	CVE-2018-14979	Information Leak / Disclosure vulnerability in Asus Zenfone 3 MAX Firmware 7.0.0.55	Low
2018-12-28	CVE-2018-14992	Security Features vulnerability in Asus Zenfone 3 MAX Firmware 1.5.0.40	Low
2018-12-26	CVE-2018-18536	Permissions, Privileges, and Access Control vulnerability in Asus Aura Sync Firmware 1.07.22	High
2018-12-26	CVE-2018-18535	Improper Access Control vulnerability in Asus Aura Sync Firmware 1.07.22	High
2018-12-26	CVE-2018-18537	Security Features vulnerability in Asus Aura Sync Firmware 1.07.22	Low
2018-10-14	CVE-2018-18291	Cross-Site Scripting (XSS) vulnerability in Asus RT Ac58U Firmware 3.0.0.4.380.6516	Medium
2018-10-14	CVE-2018-18287	Information Leak / Disclosure vulnerability in Asus RT Ac58U Firmware 3.0.0.4.380.6516	Medium
2018-09-17	CVE-2018-17127	NULL Pointer Dereference vulnerability in Asus GT Ac5300 Firmware 3.0.0.4.384.32738	High

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.