CVE-2022-25227

Posted on by admin

CVE-2022-25227

Thinfinity VNC v4.0.0.1 contains a Cross-Origin Resource Sharing (CORS) vulnerability which can allow an unprivileged remote attacker, if they can trick a user into browse malicious site, to obtain an ‘ID’ that can be used to send websocket requests and achieve RCE.

Source: CVE-2022-25227

답글 남기기

이메일 주소는 공개되지 않습니다. 필수 필드는 *로 표시됩니다