Medium severityGHSA Advisory· Published Sep 1, 2020· Updated Sep 23, 2021
Insecure Defaults Leads to Potential MITM in ezseed-transmission
CVE-2016-1000224
Description
Affected versions of ezseed-transmission download and run a script over an HTTP connection.
An attacker in a privileged network position could launch a Man-in-the-Middle attack and intercept the script, replacing it with malicious code, completely compromising the system running ezseed-transmission.
Recommendation
Update to version 0.0.15 or later.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
ezseed-transmissionnpm | >= 0.0.10, < 0.0.15 | 0.0.15 |
Affected products
2- Range: >= 0.0.10, <= 0.0.14
Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.