Vulnerabilities > Openelec > Openelec > 7.0.1

DATE CVE VULNERABILITY TITLE RISK
2017-03-05 CVE-2017-6445 Missing Encryption of Sensitive Data vulnerability in Openelec 6.0.3/7.0.1
The auto-update feature of Open Embedded Linux Entertainment Center (OpenELEC) 6.0.3, 7.0.1, and 8.0.4 uses neither encrypted connections nor signed updates.
network
high complexity
openelec CWE-311
7.6