Eclipse Vorto is vulnerable to man-in-the-middle (MitM). The attack exists because it does not use encrypted HTTP channel download its eclipse dependencies, allowing a remote attacker to intercept the HTTP traffic during the installation of dependencies.
CPE | Name | Operator | Version |
---|---|---|---|
vorto parent | le | 0.10.0 |