CVE-2016-10641

CVE-2016-10641 affects the Android package node-bsdiff-android , where resources are downloaded over HTTP. The underlying vulnerability allows an attacker with network access to modify or read downloaded resources, creating potential for data exposure and, in some scenarios, remote code execution...