Vulnerability Details CVE-2019-11688
An issue was discovered in ASUSTOR exFAT Driver through 1.0.0.r20. When conducting license validation, exfat.cgi and exfatctl accept any certificate for asustornasapi.asustor.com. In other words, there is Missing SSL Certificate Validation.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 59.4%
CVSS Severity
CVSS v3 Score 7.4
CVSS v2 Score 8.8
References
Products affected by CVE-2019-11688
-
cpe:2.3:a:asustor:exfat_driver:1.0.0