Name of the Vulnerable Software and Affected Versions bcm20702a1-firmware (affected versions not specified)

Description The issue is related to person-in-the-middle attacks. To avoid such attacks, the update changes the protocol used to fetch the archive from http to https. Additionally, it fetches and installs another variant firmware.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.