Affected versions of ezseed-transmission
download and run a script over an HTTP connection.
An attacker in a privileged network position could launch a Man-in-the-Middle attack and intercept the script, replacing it with malicious code, completely compromising the system running ezseed-transmission
.
Update to version 0.0.15 or later.
CPE | Name | Operator | Version |
---|---|---|---|
ezseed-transmission | ge | 0.0.10 | |
ezseed-transmission | lt | 0.0.15 |