Vulnerability: Insecure Binary Resource Downloads in Unicode before 9.0.0

CVE-2016-10578 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

unicode loads unicode data downloaded from unicode.org into nodejs. Unicode before 9.0.0 downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks.

Learn more about our Web Application Penetration Testing UK.