Lucene search
Galenframework-cli Node Module Security Vulnerabilities
cve
galenframework-cli is the node wrapper for the Galen Framework. galenframework-cli below 2.3.1 download binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution (RCE) by swapping out the requested binary with an attacker controlled...
8.1CVSS
8.3AI Score
0.002EPSS
2018-05-31 08:29 PM
26