CVE-2019-11689
N/A
N/A
Summary
An issue was discovered in ASUSTOR exFAT Driver through 1.0.0.r20. When conducting license validation, exfat.cgi and exfatctl fail to properly validate server responses and pass unsanitized text to the system shell, resulting in code execution as root.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- https://www.asustor.com/app_central/app_detail?id=776
- https://github.com/mikedamm/CVEs/blob/master/CVE-2019-11688.md
References
- https://www.asustor.com/app_central/app_detail?id=776
- https://github.com/mikedamm/CVEs/blob/master/CVE-2019-11688.md
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.