logo
DATABASE RESOURCES PRICING ABOUT US

Insecure Defaults Leads to Potential MITM in ezseed-transmission

Description

Affected versions of `ezseed-transmission` download and run a script over an HTTP connection. An attacker in a privileged network position could launch a Man-in-the-Middle attack and intercept the script, replacing it with malicious code, completely compromising the system running `ezseed-transmission`. ## Recommendation Update to version 0.0.15 or later.


Affected Software


CPE Name Name Version
ezseed-transmission 0.0.10
ezseed-transmission 0.0.14

Related