Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Mids' Reborn Hero Designer 2.6.0.7 downloads the update manifest, as well as update files, over cleartext HTTP. Additionally, the application does not perform file integrity validation for files after download. An attacker can perform a man-in-the-middle attack against this connection and replace executable files with malicious versions, which the operating system then executes under the context of the user running Hero Designer.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Mids Reborn Hero Designer 安全漏洞
Vulnerability Description
Mids Reborn Hero Designer是Jason Thompson软件开发者的一套游戏角色设计软件。 Mids Reborn Hero Designer 2.6.0.7版本中存在安全漏洞。攻击者可通过进行中间人攻击并将可执行文件替换为恶意文件利用该漏洞在用户的上下文中执行该文件。
CVSS Information
N/A
Vulnerability Type
N/A