cvedb.io
CVE-2016-10680
HIGH · CVSS 8.1
EPSS exploitation probability: 0%
Published 2018-05-29T20:29:01.970 · Last modified 2026-06-17T00:40:09.227

Summary

adamvr-geoip-lite is a light weight native JavaScript implementation of GeoIP API from MaxMind adamvr-geoip-lite downloads geoip resources over HTTP, which leaves it vulnerable to MITM attacks. This impacts the integrity and availability of this geoip data that may alter the decisions made by an application using this data.

Affected products

adamvr-geoip-lite_project — adamvr-geoip-lite

Does this affect you?

Add your gear to cvedb and we'll alert you only when adamvr-geoip-lite_project ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.