Akeo Consulting Rufus prior to version 2.17.1187 does not adequately validate the integrity of updates downloaded over HTTP, allowing an attacker to easily convince a user to execute arbitrary code
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: certcc

Published: 2017-10-18T13:00:00

Updated: 2024-08-05T18:58:12.360Z

Reserved: 2017-08-22T00:00:00

Link: CVE-2017-13083

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2017-10-18T13:29:00.193

Modified: 2024-11-21T03:10:55.937

Link: CVE-2017-13083

cve-icon Redhat

No data.