Lucene search
K

4 matches found

NVD
NVD
added 2018/06/04 4:29 p.m.24 views

CVE-2016-10677

google-closure-tools-latest is a Node.js module wrapper for downloading the latest version of the Google Closure tools google-closure-tools-latest downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution RCE by swapping ou...

9.3CVSS8.3AI score0.01752EPSS
Exploits0References1
OSV
OSV
added 2018/06/04 4:29 p.m.16 views

CVE-2016-10677

google-closure-tools-latest is a Node.js module wrapper for downloading the latest version of the Google Closure tools google-closure-tools-latest downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution RCE by swapping ou...

8.1CVSS8.6AI score
Exploits0References1
CVE
CVE
added 2018/06/04 4:0 p.m.56 views

CVE-2016-10677

The CVE-2016-10677 issue affects the Node.js wrapper package google-closure-tools-latest, which downloads Google Closure tools over HTTP. The core risk is MITM interception of binary resources, allowing an attacker on the network to swap the requested executable with a malicious copy, potentially...

9.3CVSS8.2AI score0.01752EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2018/06/04 4:0 p.m.31 views

CVE-2016-10677

google-closure-tools-latest is a Node.js module wrapper for downloading the latest version of the Google Closure tools google-closure-tools-latest downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution RCE by swapping ou...

8.3AI score0.01752EPSS
Exploits0References1
Rows per page
Query Builder