Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
debiancveDebian Security Bug TrackerDEBIANCVE:CVE-2024-42458
HistoryAug 02, 2024 - 4:17 a.m.

CVE-2024-42458

2024-08-0204:17:30
Debian Security Bug Tracker
security-tracker.debian.org
6
neat vnc
server.c
validation
cve-2024-42458
unix

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

6.5

Confidence

Low

EPSS

0.971

Percentile

99.8%

JSON

server.c in Neat VNC (aka neatvnc) before 0.8.1 does not properly validate the security type, a related issue to CVE-2006-2369.

Related

osv 1
vulnrichment 1
nvd 3
alpinelinux 1
ubuntucve 3
cvelist 3
cve 3
fedora 2
nessus 4
openvas 12
metasploit 2
seebug 2
debiancve 2
exploitdb 4
exploitpack 1
packetstorm 2
zdt 1
canvas 1
prion 2
redhatcve 2
checkpoint_advisories 1
nmap 1
osv
osv
CVE-2024-42458
2024-08-02 04:17:30
vulnrichment
vulnrichment
CVE-2024-42458
2024-08-02 00:00:00
nvd
nvd
CVE-2024-42458
2024-08-02 04:17:30
CVE-2006-2369
2006-05-15 16:06:00
CVE-2006-2450
2006-07-18 15:40:00
alpinelinux
alpinelinux
CVE-2024-42458
2024-08-02 04:17:30
ubuntucve
ubuntucve
CVE-2024-42458
2024-08-02 00:00:00
CVE-2006-2369
2006-05-15 00:00:00
CVE-2006-2450
2006-07-18 00:00:00
cvelist
cvelist
CVE-2024-42458
2024-08-02 00:00:00
CVE-2006-2369
2006-05-15 16:00:00
CVE-2006-2450
2006-07-14 22:00:00
cve
cve
CVE-2024-42458
2024-08-02 04:17:30
CVE-2006-2369
2006-05-15 16:06:00
CVE-2006-2450
2006-07-18 15:40:00
fedora
fedora
[SECURITY] Fedora 39 Update: neatvnc-0.8.1-1.fc39
2024-08-12 04:58:59
[SECURITY] Fedora 40 Update: neatvnc-0.8.1-1.fc40
2024-08-12 01:37:50
nessus
nessus
Fedora 39 : neatvnc (2024-7250fa4a78)
2024-08-12 00:00:00
Fedora 40 : neatvnc (2024-1fbf7f22e0)
2024-08-12 00:00:00
FreeBSD : vnc -- authentication bypass vulnerability (4645b98c-e46e-11da-9ae7-00123fcc6e5c)
2006-05-19 00:00:00
openvas
openvas
Fedora: Security Advisory (FEDORA-2024-1fbf7f22e0)
2024-09-10 00:00:00
Fedora: Security Advisory (FEDORA-2024-7250fa4a78)
2024-09-10 00:00:00
Nmap NSE net: realvnc-auth-bypass
2011-06-01 00:00:00
metasploit
metasploit
RealVNC NULL Authentication Mode Bypass
2011-08-29 15:30:13
VNC Authentication None Detection
2008-06-06 04:29:41
seebug
seebug
RealVNC Authentication Bypass
2014-07-01 00:00:00
RealVNC 4.1 Authentication Bypass
2011-08-28 00:00:00
debiancve
debiancve
CVE-2006-2369
2006-05-15 16:06:00
CVE-2006-2450
2006-07-18 15:40:00
exploitdb
exploitdb
RealVNC 4.1.0 < 4.1.1 - VNC Null Authentication Bypass (Metasploit)
2006-05-15 00:00:00
RealVNC 4.1.0/4.1.1 - Authentication Bypass
2012-05-13 00:00:00
RealVNC - Authentication Bypass (Metasploit)
2011-08-26 00:00:00
exploitpack
exploitpack
RealVNC 4.1.04.1.1 - Authentication Bypass
2012-05-13 00:00:00
packetstorm
packetstorm
VNC Authentication None Detection
2024-09-01 00:00:00
RealVNC Authentication Bypass
2011-08-26 00:00:00
zdt
zdt
RealVNC Authentication Bypass
2011-08-26 00:00:00
canvas
canvas
Immunity Canvas: REALVNC_NOAUTH
2006-05-15 16:06:00
prion
prion
Authentication flaw
2006-05-15 16:06:00
Authentication flaw
2006-07-18 15:40:00
redhatcve
redhatcve
CVE-2006-2369
2015-10-30 10:13:59
CVE-2006-2450
2015-10-30 09:42:07
checkpoint_advisories
checkpoint_advisories
RealVNC Password Authentication Bypass (CVE-2006-2369)
2006-05-25 00:00:00
nmap
nmap
realvnc-auth-bypass NSE Script
2008-11-06 02:52:59

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

6.5

Confidence

Low

EPSS

0.971

Percentile

99.8%

JSON
Related for DEBIANCVE:CVE-2024-42458
osv1vulnrichment1nvd3alpinelinux1ubuntucve3cvelist3cve3fedora2nessus4openvas12metasploit2seebug2debiancve2exploitdb4exploitpack1packetstorm2zdt1canvas1prion2redhatcve2checkpoint_advisories1nmap1