CVE-2013-4114

Name of the Vulnerable Software and Affected Versions Nagstamont versions prior to 0.9.10

Description The issue concerns the transmission of sensitive information in cleartext. Specifically, the automatic update request uses a base64 format for sending a username and password, allowing remote attackers to capture this information by sniffing the network. This enables attackers to obtain sensitive data.

Recommendations For versions prior to 0.9.10, update to version 0.9.10 or later to resolve the issue. As a temporary workaround, consider restricting network access to minimize the risk of exploitation.