Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
CVE Vulnerability Details :
CVE-2020-26117
PUBLISHED
More InfoOfficial Page
Assigner-mitre
Assigner Org ID-8254265b-2729-46b6-b9e3-3dfca2d5bfca
View Known Exploited Vulnerability (KEV) details
Published At-27 Sep, 2020 | 03:30
Updated At-04 Aug, 2024 | 15:49
Rejected At-
▼CVE Numbering Authority (CNA)

In rfb/CSecurityTLS.cxx and rfb/CSecurityTLS.java in TigerVNC before 1.11.0, viewers mishandle TLS certificate exceptions. They store the certificates as authorities, meaning that the owner of a certificate could impersonate any server after a client had added an exception.

Affected Products
Vendor
n/a
Product
n/a
Versions
Affected
  • n/a
Problem Types
TypeCWE IDDescription
textN/An/a
Type: text
CWE ID: N/A
Description: n/a
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://github.com/TigerVNC/tigervnc/releases/tag/v1.11.0
x_refsource_MISC
https://github.com/TigerVNC/tigervnc/commit/f029745f63ac7d22fb91639b2cb5b3ab56134d6e
x_refsource_MISC
https://github.com/TigerVNC/tigervnc/commit/b30f10c681ec87720cff85d490f67098568a9cba
x_refsource_MISC
https://github.com/TigerVNC/tigervnc/commit/20dea801e747318525a5859fe4f37c52b05310cb
x_refsource_MISC
https://github.com/TigerVNC/tigervnc/commit/7399eab79a4365434d26494fa1628ce1eb91562b
x_refsource_MISC
https://bugzilla.opensuse.org/show_bug.cgi?id=1176733
x_refsource_MISC
https://lists.debian.org/debian-lts-announce/2020/10/msg00007.html
mailing-list
x_refsource_MLIST
http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00025.html
vendor-advisory
x_refsource_SUSE
http://lists.opensuse.org/opensuse-security-announce/2020-11/msg00024.html
vendor-advisory
x_refsource_SUSE
Hyperlink: https://github.com/TigerVNC/tigervnc/releases/tag/v1.11.0
Resource:
x_refsource_MISC
Hyperlink: https://github.com/TigerVNC/tigervnc/commit/f029745f63ac7d22fb91639b2cb5b3ab56134d6e
Resource:
x_refsource_MISC
Hyperlink: https://github.com/TigerVNC/tigervnc/commit/b30f10c681ec87720cff85d490f67098568a9cba
Resource:
x_refsource_MISC
Hyperlink: https://github.com/TigerVNC/tigervnc/commit/20dea801e747318525a5859fe4f37c52b05310cb
Resource:
x_refsource_MISC
Hyperlink: https://github.com/TigerVNC/tigervnc/commit/7399eab79a4365434d26494fa1628ce1eb91562b
Resource:
x_refsource_MISC
Hyperlink: https://bugzilla.opensuse.org/show_bug.cgi?id=1176733
Resource:
x_refsource_MISC
Hyperlink: https://lists.debian.org/debian-lts-announce/2020/10/msg00007.html
Resource:
mailing-list
x_refsource_MLIST
Hyperlink: http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00025.html
Resource:
vendor-advisory
x_refsource_SUSE
Hyperlink: http://lists.opensuse.org/opensuse-security-announce/2020-11/msg00024.html
Resource:
vendor-advisory
x_refsource_SUSE
▼Authorized Data Publishers (ADP)
CVE Program Container
Affected Products
Metrics
VersionBase scoreBase severityVector
Metrics Other Info
Impacts
CAPEC IDDescription
Solutions
Configurations
Workarounds
Exploits
Credits
Timeline
EventDate
Replaced By
Rejected Reason
References
HyperlinkResource
https://github.com/TigerVNC/tigervnc/releases/tag/v1.11.0
x_refsource_MISC
x_transferred
https://github.com/TigerVNC/tigervnc/commit/f029745f63ac7d22fb91639b2cb5b3ab56134d6e
x_refsource_MISC
x_transferred
https://github.com/TigerVNC/tigervnc/commit/b30f10c681ec87720cff85d490f67098568a9cba
x_refsource_MISC
x_transferred
https://github.com/TigerVNC/tigervnc/commit/20dea801e747318525a5859fe4f37c52b05310cb
x_refsource_MISC
x_transferred
https://github.com/TigerVNC/tigervnc/commit/7399eab79a4365434d26494fa1628ce1eb91562b
x_refsource_MISC
x_transferred
https://bugzilla.opensuse.org/show_bug.cgi?id=1176733
x_refsource_MISC
x_transferred
https://lists.debian.org/debian-lts-announce/2020/10/msg00007.html
mailing-list
x_refsource_MLIST
x_transferred
http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00025.html
vendor-advisory
x_refsource_SUSE
x_transferred
http://lists.opensuse.org/opensuse-security-announce/2020-11/msg00024.html
vendor-advisory
x_refsource_SUSE
x_transferred
Hyperlink: https://github.com/TigerVNC/tigervnc/releases/tag/v1.11.0
Resource:
x_refsource_MISC
x_transferred
Hyperlink: https://github.com/TigerVNC/tigervnc/commit/f029745f63ac7d22fb91639b2cb5b3ab56134d6e
Resource:
x_refsource_MISC
x_transferred
Hyperlink: https://github.com/TigerVNC/tigervnc/commit/b30f10c681ec87720cff85d490f67098568a9cba
Resource:
x_refsource_MISC
x_transferred
Hyperlink: https://github.com/TigerVNC/tigervnc/commit/20dea801e747318525a5859fe4f37c52b05310cb
Resource:
x_refsource_MISC
x_transferred
Hyperlink: https://github.com/TigerVNC/tigervnc/commit/7399eab79a4365434d26494fa1628ce1eb91562b
Resource:
x_refsource_MISC
x_transferred
Hyperlink: https://bugzilla.opensuse.org/show_bug.cgi?id=1176733
Resource:
x_refsource_MISC
x_transferred
Hyperlink: https://lists.debian.org/debian-lts-announce/2020/10/msg00007.html
Resource:
mailing-list
x_refsource_MLIST
x_transferred
Hyperlink: http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00025.html
Resource:
vendor-advisory
x_refsource_SUSE
x_transferred
Hyperlink: http://lists.opensuse.org/opensuse-security-announce/2020-11/msg00024.html
Resource:
vendor-advisory
x_refsource_SUSE
x_transferred
Details not found