← back
CVE-2020-28190

CVE-2020-28190

EPSS 0.8%
TerraMaster TOS <= 4.2.06 was found to check for updates (of both system and applications) via an insecure channel (HTTP). Man-in-the-middle attackers are able to intercept these requests and serve a weaponized/infected version of applications or updates.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://www.ihteam.net/advisory/terramaster-tos-multiple-vulnerabilities/https://www.terra-master.com/