Attention: With the CVE number mentioned above a serious vulnerability in relation to the OpenWebIf has been reported. See CVE-2017-9807 for details. The vulnerability makes it possible to create, overwrite or change arbitrary files using a specially formulated web request. Every Enigma2 version with an installed OpenWebIf is impacted. This vulnerability is present in the latest VTI 11.0.2 image.
A fix was commited in the git repository for openwebif.
VTI team should update to the latest version of openwebif.


Sent from my iPhone using Tapatalk