CVE-2022-25227
N/A
N/A
Summary
Thinfinity VNC v4.0.0.1 contains a Cross-Origin Resource Sharing (CORS) vulnerability which can allow an unprivileged remote attacker, if they can trick a user into browse malicious site, to obtain an 'ID' that can be used to send websocket requests and achieve RCE.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | Thinfinity VNC | 4.0.0.1 | affected |
Weaknesses
- CORS Misconfiguration
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.