FileMaker Pro prior to 13 and Pro Advanced prior to 13 does not verify X.509 certificates from SSL servers, which allows man-in-the-middle malicious users to spoof servers and obtain sensitive information via a crafted certificate. NOTE: this vulnerability exists because of an incorrect fix for CVE-2013-2319.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
filemaker filemaker pro advanced |
||
filemaker filemaker pro |