CVE-2020-26117 – In rfb/CSecurityTLS.cxx and rfb/CSecurityTLS.java in TigerVNC before 1.11.0, viewers misha …

27 September 2020

Vuln ID: CVE-2020-26117

Published: 2020-09-27 04:15:11Z

Description: In rfb/CSecurityTLS.cxx and rfb/CSecurityTLS.java in TigerVNC before 1.11.0, viewers mishandle TLS certificate exceptions. They store the certificates as authorities, meaning that the owner of a certificate could impersonate any server after a client had added an exception.

Source: NVD.NIST.GOV

Date:

27 September 2020

Categorie(s):

NVD

Tag(s):

NVD

.NET Aspire Preview 6: Enhanced Security and Testing, New Features, and More26 April 2024
The unspoken obnoxiousness of Google’s Gemini improvements26 April 2024
Hackers Exploit Old Microsoft Office 0-day to Deliver Cobalt Strike26 April 2024
Android versions: A living history from 1.0 to 1526 April 2024
Secure Coding Practices to Stop Cyber Attacks26 April 2024