Unrated severityNVD Advisory· Published Dec 14, 2021· Updated Aug 4, 2024
CVE-2021-41067
CVE-2021-41067
Description
An issue was discovered in Listary through 6. Improper implementation of the update process leads to the download of software updates with a /check-update HTTP-based connection. This can be exploited with MITM techniques. Together with the lack of package validation, it can lead to manipulation of update packages that can cause an installation of malicious content.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Listary/Listarydescription
Patches
Vulnerability mechanics
References
2- medium.com/%40tomerp_77017/exploiting-listary-searching-your-way-to-system-privileges-8175af676c3emitrex_refsource_MISC
- www.listary.com/downloadmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.