CVE-2022-25226
N/A
N/A
Summary
ThinVNC version 1.0b1 allows an unauthenticated user to bypass the authentication process via 'http://thin-vnc:8080/cmd?cmd=connect' by obtaining a valid SID without any kind of authentication. It is possible to achieve code execution on the server by sending keyboard or mouse events to the server.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | ThinVNC | 1.0b1 | affected |
Weaknesses
- Authentication Bypass
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.