CVE-2012-5818
ElephantDrive is affected by CVE-2012-5818 due to missing hostname verification in TLS certificates. The product does not validate that the server certificate CN/subjectAltName matches the server hostname, enabling MITM via arbitrary valid certificates. Impact: partial confidentiality and integri...