Name of the Vulnerable Software and Affected Versions Галактика ERP (affected versions not specified)

Description The issue is related to the Plain FTP protocol used by the "Менеджер обновлений" component, which lacks protection for transmitted data. This can be exploited by a remote attacker to gain access to software updates and replace them by conducting "man-in-the-middle" attacks.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.