2 matches found
CVE-2016-10629
The CVE-2016-10629 entry corresponds to nw-with-arm (NW Installer including ARM-Build), which insecurely downloads resources over HTTP. The root cause is unencrypted HTTP retrieval of executables, enabling an attacker with a privileged network position to intercept and replace the binary, potenti...
CVE-2016-10629
nw-with-arm is a NW Installer including ARM-Build. nw-with-arm downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution RCE by swapping out the requested binary with an attacker controlled binary if the attacker is on the...