CVE-2021-38142
Barco MirrorOp Windows Sender prior to version 2.5.3.65 is vulnerable due to a cleartext HTTP upgrade mechanism that is not protected with TLS. An attacker on the local network can abuse this insecure upgrade process to achieve remote code execution on any computer attempting to update Windows Se...