CVE-2016-10642
The CVE-2016-10642 entry corresponds to cmake downloading binary resources over HTTP, enabling MITM and potential remote code execution if an attacker is on the network. Connected sources (GHSA-4J59-HFW6-6W7H and OSV) confirm that affected cmake versions insecurely fetch executables via unencrypt...