CVE-2018-7259

Name of the Vulnerable Software and Affected Versions Flight Sim Labs A320-X installer version 2.0.1.231

Description The installer sends a user's Google account credentials to "http://installLog.flightsimlabs.com/LogHandler3.ashx" if a pirated serial number has been entered, allowing remote attackers to obtain sensitive information by sniffing the network for cleartext HTTP traffic.

Recommendations For version 2.0.1.231, update to version 2.0.1.232 to resolve the issue. As a temporary workaround, consider avoiding the use of the installer with potentially pirated serial numbers and restricting network access to minimize the risk of exploitation.