Lucene search

K

MitreCVELIST:CVE-2020-24619

HistorySep 22, 2020 - 11:51 a.m.

CVE-2020-24619

2020-09-2211:51:44

mitre

www.cve.org

0.001 Low

EPSS

Percentile

28.7%

In mainwindow.cpp in Shotcut before 20.09.13, the upgrade check misuses TLS because of setPeerVerifyMode(QSslSocket::VerifyNone). A man-in-the-middle attacker could offer a spoofed download resource.

References

github.com/mltframework/shotcut/commit/f008adc039642307f6ee3378d378cdb842e52c1d

shotcut.org/blog/new-release-200913/

0.001 Low

EPSS

Percentile

28.7%

Related for CVELIST:CVE-2020-24619

nvd1 prion1 osv1 cve1 ubuntucve1