Insecure plugin update mechanism in tucan through 0.3.10 could allow remote attackers to perform man-in-the-middle attacks and execute arbitrary code ith the permissions of the user running tucan.
Affected Software
Name |
Vendor |
Start Version |
End Version |
Tucan |
Tucaneando |
* |
0.3.10 |
References