Lucene search
K

25 matches found

OSV
OSV
added 2020/10/20 4:22 p.m.7 views

MGASA-2020-0388 Updated tigervnc packages fix a security vulnerability

In rfb/CSecurityTLS.cxx and rfb/CSecurityTLS.java in TigerVNC before 1.11.0, viewers mishandle TLS certificate exceptions. They store the certificates as authorities, meaning that the owner of a certificate could impersonate any server after a client had added an exception. CVE-2020-26117...

8.1CVSS7.9AI score0.0306EPSS
Exploits0References6
RedhatCVE
RedhatCVE
added 2020/09/30 2:42 a.m.26 views

CVE-2020-26117

In rfb/CSecurityTLS.cxx and rfb/CSecurityTLS.java in TigerVNC before 1.11.0, viewers mishandle TLS certificate exceptions. They store the certificates as authorities, meaning that the owner of a certificate could impersonate any server after a client had added an exception. Mitigation This flaw c...

8.1CVSS3.6AI score0.0306EPSS
Exploits0References3
OSV
OSV
added 2020/09/27 4:15 a.m.0 views

DEBIAN-CVE-2020-26117

In rfb/CSecurityTLS.cxx and rfb/CSecurityTLS.java in TigerVNC before 1.11.0, viewers mishandle TLS certificate exceptions. They store the certificates as authorities, meaning that the owner of a certificate could impersonate any server after a client had added an exception...

8.1CVSS7.8AI score0.0306EPSS
Exploits0References1
OSV
OSV
added 2020/09/27 4:15 a.m.4 views

UBUNTU-CVE-2020-26117

In rfb/CSecurityTLS.cxx and rfb/CSecurityTLS.java in TigerVNC before 1.11.0, viewers mishandle TLS certificate exceptions. They store the certificates as authorities, meaning that the owner of a certificate could impersonate any server after a client had added an exception...

8.1CVSS7.2AI score0.0306EPSS
Exploits0References13
Positive Technologies
Positive Technologies
added 2020/09/27 12:0 a.m.2 views

PT-2020-6482

Name of the Vulnerable Software and Affected Versions: TigerVNC versions prior to 1.11.0 Description: The issue is related to the mishandling of TLS certificate exceptions in TigerVNC. Viewers store the certificates as authorities, allowing the owner of a certificate to impersonate any server aft...

8.1CVSS6.5AI score0.04773EPSS
Exploits5References94
Rows per page
Query Builder