CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Meltytech: >> Shotcut >> 17.04 Security Vulnerabilities

CVE-2020-24619

In mainwindow.cpp in Shotcut before 20.09.13, the upgrade check misuses TLS because of setPeerVerifyMode(QSslSocket::VerifyNone). A man-in-the-middle attacker could offer a spoofed download resource.

CVSS Score

5.9

EPSS Score

0.002

Published

2020-09-22

Page 1

Vulnerabilities

Vulnerable Software

Meltytech: >> Shotcut >> 17.04 Security Vulnerabilities

Products

Pricing

Contact Us