CVE-2024-42458

server.c in Neat VNC (aka neatvnc) before 0.8.1 does not properly validate the security type, a related issue to CVE-2006-2369.
Configurations

Configuration 1 (hide)

cpe:2.3:a:any1:neatvnc:*:*:*:*:*:*:*:*

History

05 Sep 2024, 15:51

Type Values Removed Values Added
CWE NVD-CWE-noinfo
CPE cpe:2.3:a:any1:neatvnc:*:*:*:*:*:*:*:*
First Time Any1 neatvnc
Any1
References () https://github.com/any1/neatvnc/commit/cc71650a69abc2573a0d96d082409d2468802d47 - () https://github.com/any1/neatvnc/commit/cc71650a69abc2573a0d96d082409d2468802d47 - Patch
References () https://github.com/any1/neatvnc/compare/v0.8.0...v0.8.1 - () https://github.com/any1/neatvnc/compare/v0.8.0...v0.8.1 - Patch
References () https://github.com/any1/neatvnc/releases/tag/v0.8.1 - () https://github.com/any1/neatvnc/releases/tag/v0.8.1 - Patch
References () https://www.openwall.com/lists/oss-security/2024/08/02/1 - () https://www.openwall.com/lists/oss-security/2024/08/02/1 - Mailing List, Patch
References () https://www.openwall.com/lists/oss-security/2024/08/02/10 - () https://www.openwall.com/lists/oss-security/2024/08/02/10 - Mailing List
References () https://www.openwall.com/lists/oss-security/2024/08/02/7 - () https://www.openwall.com/lists/oss-security/2024/08/02/7 - Mailing List

07 Aug 2024, 16:35

Type Values Removed Values Added
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 9.8
CWE CWE-20

02 Aug 2024, 23:16

Type Values Removed Values Added
Summary (en) server.c in Neat VNC (aka neatvnc) before 0.8.1 does not properly validate the security type. (en) server.c in Neat VNC (aka neatvnc) before 0.8.1 does not properly validate the security type, a related issue to CVE-2006-2369.
References
  • () https://www.openwall.com/lists/oss-security/2024/08/02/10 -
  • () https://www.openwall.com/lists/oss-security/2024/08/02/7 -

02 Aug 2024, 12:59

Type Values Removed Values Added
Summary
  • (es) server.c en Neat VNC (también conocido como cleanvnc) anterior a 0.8.1 no valida correctamente el tipo de seguridad.

02 Aug 2024, 04:17

Type Values Removed Values Added
New CVE

Information

Published : 2024-08-02 04:17

Updated : 2024-09-05 15:51


NVD link : CVE-2024-42458

Mitre link : CVE-2024-42458

CVE.ORG link : CVE-2024-42458


JSON object : View

Products Affected

any1

  • neatvnc
CWE
NVD-CWE-noinfo CWE-20

Improper Input Validation