CVE-2013-2319

Published Jun 10, 2013
·
Updated

FileMaker Pro before 12 and Pro Advanced before 12 does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certificate.

Affected Software

36 affected components
FileMaker FileMaker Pro<=11.0.4.0
FileMaker FileMaker Pro=8.0.1.0
FileMaker FileMaker Pro=8.0.2.0
FileMaker FileMaker Pro=8.0.3.0
FileMaker FileMaker Pro=8.5.0.0
FileMaker FileMaker Pro=8.5.1.0
FileMaker FileMaker Pro=8.5.2.0
FileMaker FileMaker Pro=9.0.0.0
FileMaker FileMaker Pro=9.0.1.0
FileMaker FileMaker Pro=9.0.2.0
FileMaker FileMaker Pro=9.0.3.0
FileMaker FileMaker Pro=10.0.0.0
FileMaker FileMaker Pro=10.0.1.0
FileMaker FileMaker Pro=10.0.3.0
FileMaker FileMaker Pro=11.0.0.0
FileMaker FileMaker Pro=11.0.1.0
FileMaker FileMaker Pro=11.0.2.0
FileMaker FileMaker Pro=11.0.3.0
FileMaker Filemaker Pro Advanced<=11.0.4.0
FileMaker Filemaker Pro Advanced=8.0.1.0
FileMaker Filemaker Pro Advanced=8.0.2.0
FileMaker Filemaker Pro Advanced=8.0.3.0
FileMaker Filemaker Pro Advanced=8.5.0.0
FileMaker Filemaker Pro Advanced=8.5.1.0
FileMaker Filemaker Pro Advanced=8.5.2.0
FileMaker Filemaker Pro Advanced=9.0.0.0
FileMaker Filemaker Pro Advanced=9.0.1.0
FileMaker Filemaker Pro Advanced=9.0.2.0
FileMaker Filemaker Pro Advanced=9.0.3.0
FileMaker Filemaker Pro Advanced=10.0.0.0
FileMaker Filemaker Pro Advanced=10.0.1.0
FileMaker Filemaker Pro Advanced=10.0.3.0
FileMaker Filemaker Pro Advanced=11.0.0.0
FileMaker Filemaker Pro Advanced=11.0.1.0
FileMaker Filemaker Pro Advanced=11.0.2.0
FileMaker Filemaker Pro Advanced=11.0.3.0

Event History

Jun 10, 2013
CVE Published
via MITRE·05:00 PM
Data Sourced
via MITRE·05:00 PM
Description
Free Weekly Intel

Don't miss critical vulnerabilities

Join thousands of security professionals who receive our weekly digest of trending CVEs, zero-days, and exploited vulnerabilities.

No spam. Unsubscribe anytime.

Frequently Asked Questions

1

What is the severity of CVE-2013-2319?

CVE-2013-2319 has a moderate severity level, allowing man-in-the-middle attacks due to improper SSL server certificate verification.

2

How do I fix CVE-2013-2319?

To fix CVE-2013-2319, upgrade to FileMaker Pro version 12 or later, which includes proper SSL certificate verification.

3

What are the risks associated with CVE-2013-2319?

The risks include potential data interception and extraction by attackers spoofing SSL servers.

4

Which versions of FileMaker are affected by CVE-2013-2319?

CVE-2013-2319 affects FileMaker Pro versions prior to 12 and some versions of FileMaker Pro Advanced before 12.

5

Is CVE-2013-2319 applicable to my FileMaker software?

If you are using any version of FileMaker Pro or Pro Advanced below 12, you are vulnerable to CVE-2013-2319.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2026 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203