CRITICAL
Nicehash
CVE published 2025-09-30
CVE-2025-56513
CVE-2025-56513 describes a critical update-integrity weakness in NiceHash QuickMiner 6.12.0. The CVE record says the product can perform software updates over HTTP without validating digital signatures or hash checks, which could allow a network-positioned attacker to hijack the update process and deliver an automatically executed malicious executable. The record rates the issue 9.8 (CVSS 3.1: AV:N/AC:L/P [truncated]