CVE-2020-28190

TerraMaster TOS <= 4.2.06 was found to check for updates (of both system and applications) via an insecure channel (HTTP). Man-in-the-middle attackers are able to intercept these requests and serve a weaponized/infected version of applications or updates. Date published : 2020-12-24 https://www.ihteam.net/advisory/terramaster-tos-multiple-vulnerabilities/

https://www.terra-master.com/