Name of the Vulnerable Software and Affected Versions Галактика ERP (affected versions not specified)

Description The issue is related to the lack of protection for transmitted data in the update manager component of the Галактика ERP system. This could allow a remote attacker with access to the update server to execute arbitrary code by substituting legitimate updates with modified ones.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.