hawkbit is vulnerable to man-in-the-middle attacks. The Maven build artifacts for Vaadin based UI is built over HTTP instead of HTTPS, which would allow a remote attacker to perform a man-in-the-middle attack between the client and the original server.
CPE | Name | Operator | Version |
---|---|---|---|
hawkbit :: parent | le | 0.3.0M1 | |
hawkbit :: parent | le | 0.3.0M1 |