CVE-2025-27377

Name of the Vulnerable Software and Affected Versions Altium Designer version 24.9.0

Description Altium Designer does not validate self-signed server certificates for cloud connections. This could allow an attacker performing a man-in-the-middle (MITM) attack to intercept or manipulate network traffic, potentially exposing authentication credentials or sensitive design data. A man-in-the-middle (MITM) attack is a type of cyberattack where a malicious actor secretly intercepts and potentially alters communication between two parties who believe they are directly communicating with each other.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.