CVE-2011-1775 — Improper Input Validation in Tigervnc

CWE-20 — Improper Input Validation5 documents5 sources

Severity

5.8MEDIUMNVD

EPSS

0.5%

top 35.03%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Tigervnc Debian Tigervnc

Timeline

PublishedMay 26

Latest updateMay 17

Description

The CSecurityTLS::processMsg function in common/rfb/CSecurityTLS.cxx in the vncviewer component in TigerVNC 1.1beta1 does not properly verify the server's X.509 certificate, which allows man-in-the-middle attackers to spoof a TLS VNC server via an arbitrary certificate.

CVSS vector

AV:N/AC:M/C:P/I:P/A:NExploitability: 8.6 | Impact: 4.9

Affected Packages2 packages

▶debiandebian/tigervnc

▶NVDtigervnc/tigervnc1.1

🔴Vulnerability Details

GHSA

GHSA-g8f8-5m52-5p35: The CSecurityTLS::processMsg function in common/rfb/CSecurityTLS↗2022-05-17

▶

📋Vendor Advisories

Red Hat

tigervnc: vncviewer can send password to server without proper validation of the X.509 certificate↗2011-05-04

▶

Debian

CVE-2011-1775: tigervnc - The CSecurityTLS::processMsg function in common/rfb/CSecurityTLS.cxx in the vncv...↗2011

▶

💬Community

Bugzilla

CVE-2011-1775 tigervnc: vncviewer can send password to server without proper validation of the X.509 certificate↗2011-05-05

▶