Vulnerabilities > Flightsimlabs > A320 X

DATE CVE VULNERABILITY TITLE RISK
2018-02-20 CVE-2018-7259 Cleartext Transmission of Sensitive Information vulnerability in Flightsimlabs A320-X 2.0.1.231
The FSX / P3Dv4 installer 2.0.1.231 for Flight Sim Labs A320-X sends a user's Google account credentials to http://installLog.flightsimlabs.com/LogHandler3.ashx if a pirated serial number has been entered, which allows remote attackers to obtain sensitive information, e.g., by sniffing the network for cleartext HTTP traffic.
network
low complexity
flightsimlabs CWE-319
critical
9.8