CVE-2020-15498
26.08.2020, 13:15
An issue was discovered on ASUS RT-AC1900P routers before 3.0.0.4.385_20253. The router accepts an arbitrary server certificate for a firmware update. The culprit is the --no-check-certificate option passed to wget tool used to download firmware update files.Enginsight
Vendor | Product | Version |
---|---|---|
asus | rt-ac1900p_firmware | 𝑥 < 3.0.0.4.385.20253 |
𝑥
= Vulnerable software versions
Common Weakness Enumeration