← Back

Exfat Driver

exfat_driver

Vendor: Asustor • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2019-11689
1Asustor
1Exfat Driver
Nov 21, 2024
Mar 18, 2020
N/A· v4
8.1 HIGH· v3
9.3 HIGH· v2
An issue was discovered in ASUSTOR exFAT Driver through 1.0.0.r20. When conducting license validation, exfat.cgi and exfatctl fail to properly validate server responses and pass unsanitized text to the system shell, resu...Show more
An issue was discovered in ASUSTOR exFAT Driver through 1.0.0.r20. When conducting license validation, exfat.cgi and exfatctl fail to properly validate server responses and pass unsanitized text to the system shell, resulting in code execution as root.Show less
CVE-2019-11688
1Asustor
1Exfat Driver
Nov 21, 2024
Mar 18, 2020
N/A· v4
7.4 HIGH· v3
8.8 HIGH· v2
An issue was discovered in ASUSTOR exFAT Driver through 1.0.0.r20. When conducting license validation, exfat.cgi and exfatctl accept any certificate for asustornasapi.asustor.com. In other words, there is Missing SSL Cer...Show more
An issue was discovered in ASUSTOR exFAT Driver through 1.0.0.r20. When conducting license validation, exfat.cgi and exfatctl accept any certificate for asustornasapi.asustor.com. In other words, there is Missing SSL Certificate Validation.Show less