CVE-2021-43171
The CVE affects the e/OS App Lounge app store client (before version 0.19q). The root cause is improper verification of cryptographic signatures, allowing an attacker who controls the app server to install malicious applications by altering the server API response. Impact is high on integrity of ...