The Inetc plugin for Nullsoft Scriptable Install System (NSIS), as used in CERT/CC Failure Observation Engine (FOE) and other products, does not verify X.509 certificates from SSL servers, which. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable. No vendor patch available.
RCE
Microsoft
Inetc
NVD
CVSS 2.0
4.3
EPSS
1.2%