3 matches found
CVE-2014-2680
The update process in Xmind 3.4.1 and earlier allow remote attackers to execute arbitrary code via a man-in-the-middle attack...
CVE-2014-2680
The update process in Xmind 3.4.1 and earlier allow remote attackers to execute arbitrary code via a man-in-the-middle attack...
CVE-2014-2680
CVE-2014-2680 affects Xmind 3.4.1 and earlier. The flaw lies in the update process, which allowed remote attackers to execute arbitrary code via a man-in-the-middle attack during updates. Connected sources corroborate the issue as a network-based exploit tied to the update mechanism. No explicit ...