1 results (0.002 seconds)
CVSS: 5.9EPSS: 0%CPEs: 1EXPL: 0
CVSS: 5.9EPSS: 0%CPEs: 1EXPL: 0CVE-2016-10534
https://notcve.org/view.php?id=CVE-2016-10534
31 May 2018 — electron-packager is a command line tool that packages Electron source code into `.app` and `.exe` packages. along with Electron. The `--strict-ssl` command line option in electron-packager >= 5.2.1 <= 6.0.0 || >=6.0.0 <= 6.0.2 defaults to false if not explicitly set to true. This could allow an attacker to perform a man in the middle attack. electron-packager es una herramienta de línea de comandos que empaqueta código fuente Electron en los paquetes ".app" y ".exe" junto con Electron. La opción de línea d... • https://github.com/electron-userland/electron-packager/issues/333 • CWE-295: Improper Certificate Validation •