2 matches found
CVE-2016-10651
webdriver-launcher is a Node.js Selenium Webdriver Launcher. webdriver-launcher downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution RCE by swapping out the requested binary with an attacker controlled binary if the...
CVE-2016-10651
CVE-2016-10651 affects the Node.js Selenium Webdriver Launcher, webdriver-launcher, which downloads binary resources over HTTP. This enables MITM attacks where an attacker on the network can swap the binary, potentially leading to remote code execution on the user’s system. Public references cons...