Simpestreams Project: >> Simplestreams Security Vulnerabilities
Simple Streams (simplestreams) does not properly verify the GPG signatures of disk image files, which allows remote mirror servers to spoof disk images and have unspecified other impact via a 403 (aka Forbidden) response.
CVSS Score
6.8
EPSS Score
0.003
Published
2015-10-09