High severity7.5NVD Advisory· Published Feb 4, 2019· Updated Jun 17, 2026
CVE-2019-7323
CVE-2019-7323
Description
GUP (generic update process) in LightySoft LogMX before 7.4.0 does not properly verify the authenticity of updates, which allows man-in-the-middle attackers to execute arbitrary code via a Trojan horse update. The update process relies on cleartext HTTP. The attacker could replace the LogMXUpdater.class file.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: <7.4.0
Patches
Vulnerability mechanics
References
3- logmx.com/downloadnvdPatchRelease NotesThird Party Advisory
- bmantra.github.io/logmx/logmx.htmlnvdExploitThird Party Advisory
- github.com/bmantra/bmantra.github.io/blob/master/logmx/logmx.htmlnvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.