4 matches found
Exploit for CVE-2022-25226
ThinVNC 1.0b1 - Authentication Bypass to Remote Code Execution...
CVE-2022-25226
ThinVNC version 1.0b1 allows an unauthenticated user to bypass the authentication process via 'http://thin-vnc:8080/cmd?cmd=connect' by obtaining a valid SID without any kind of authentication. It is possible to achieve code execution on the server by sending keyboard or mouse events to the serve...
CVE-2022-25226
creationtimestamp| type| source ---|---|--- 2022-04-18 20:29:32+00:00| seen| https://t.me/cibsecurity/41035 2025-02-11 16:54:10+00:00| confirmed| https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2022/CVE-2022-25226.yaml 2025-02-12 21:02:00+00:00| seen|...
CVE-2022-25226
ThinVNC 1.0b1 contains an authentication bypass via /cmd?cmd=connect that allows an unauthenticated user to gain access and potentially execute code on the server. The NUCLEI template confirms the issue as an authentication bypass leading to unauthorized interaction with the backend, and Red Hat/...