Tinc Security Vulnerabilities and Issues — Tinc CVE List

Lucene search

Tinc-vpnTinc

3 matches found

CVE•added 2018/10/10 9:29 p.m.•87 views

CVE-2018-16738

tinc 1.0.30 through 1.0.34 has a broken authentication protocol, although there is a partial mitigation. This is fixed in 1.1.

4.3CVSS4.5AI score0.0038EPSS

CVE•added 2018/10/10 9:29 p.m.•77 views

CVE-2018-16758

Missing message authentication in the meta-protocol in Tinc VPN version 1.0.34 and earlier allows a man-in-the-middle attack to disable the encryption of VPN packets.

5.9CVSS5.5AI score0.00291EPSS

CVE•added 2018/10/10 9:29 p.m.•73 views

CVE-2018-16737

tinc before 1.0.30 has a broken authentication protocol, without even a partial mitigation.

5.3CVSS5.2AI score0.00442EPSS