6.8 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
38.7%
An issue was discovered in Hybrid Group Gobot before 1.13.0. The mqtt subsystem skips verification of root CA certificates by default.
github.com/hybridgroup/gobot/platforms/mqtt
github.com/hybridgroup/gobot
github.com/hybridgroup/gobot/commit/c1aa4f867846da4669ecf3bc3318bd96b7ee6f3f
github.com/hybridgroup/gobot/compare/ed53198...7f973df
github.com/hybridgroup/gobot/releases/tag/v1.13.0
nvd.nist.gov/vuln/detail/CVE-2019-12496
pkg.go.dev/vuln/GO-2021-0083