CVE-2014-2680

CVE-2014-2680

EPSS 1.9%

The update process in Xmind 3.4.1 and earlier allow remote attackers to execute arbitrary code via a man-in-the-middle attack.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://web.archive.org/web/20160822124252/http://rampartssecurity.com/docs/Xmind-MITM.pdf