CVE-2017-17945

Name of the Vulnerable Software and Affected Versions ASUS HiVivo application versions prior to 5.6.27 for ASUS Watch

Description The issue concerns missing SSL certificate validation in the ASUS HiVivo application. This could potentially allow for man-in-the-middle attacks or other security breaches due to the lack of proper validation of SSL certificates.

Recommendations For versions prior to 5.6.27, update to version 5.6.27 or later to resolve the issue. As a temporary workaround, consider restricting the use of the application over unsecured or public networks until the update can be applied.