If the user enables the https function on the device, an...
Moderate severity
Unreviewed
Published
Jun 29, 2022
to the GitHub Advisory Database
•
Updated Jan 27, 2023
Description
Published by the National Vulnerability Database
Jun 28, 2022
Published to the GitHub Advisory Database
Jun 29, 2022
Last updated
Jan 27, 2023
If the user enables the https function on the device, an attacker can modify the user’s request data packet through a man-in-the-middle attack ,Injection of a malicious URL in the Host: header of the HTTP Request results in a 302 redirect to an attacker-controlled page.
References