CVE-2020-15498
published 2020-08-26CVE-2020-15498: An issue was discovered on ASUS RT-AC1900P routers before 3.0.0.4.385_20253. The router accepts an arbitrary server certificate for a firmware update. The…
medium5.9CVSS 3.1
AVNACHPRNUINSUCNIHAN
An issue was discovered on ASUS RT-AC1900P routers before 3.0.0.4.385_20253. The router accepts an arbitrary server certificate for a firmware update. The culprit is the --no-check-certificate option passed to wget tool used to download firmware update files.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| asus | rt-ac1900p_firmware | < 3.0.0.4.385.20253 | 3.0.0.4.385.20253 |