Security Advisory

CVE-2020-15498

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-08-26 12:05:26

Last updated 2024-08-04 13:15:20

Assigner mitre

State PUBLISHED

Description

An issue was discovered on ASUS RT-AC1900P routers before 3.0.0.4.385_20253. The router accepts an arbitrary server certificate for a firmware update. The culprit is the --no-check-certificate option passed to wget tool used to download firmware update files.

← Browse all CVEs View on cve.org ↗