3 matches found
CVE-2017-16041
ikst versions before 1.1.2 download resources over HTTP, which leaves it vulnerable to MITM attacks...
CVE-2017-16041
ikst versions before 1.1.2 download resources over HTTP, which leaves it vulnerable to MITM attacks...
CVE-2017-16041
The CVE-2017-16041 entry concerns ikst before version 1.1.2, which downloads resources over HTTP. The underlying issue is insecure resource fetching, enabling a man-in-the-middle (MITM) attacker with network access to modify or read resources. Affected component is the ikst download logic; impact...