Velneo vClient on its 28.1.3 version, does not correctly check the certificate of authenticity by default. This could allow an attacker that has access to the network to perform a MITM attack in order to obtain the user´s credentials.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: INCIBE
Published: 2022-09-23T15:02:18.737494Z
Updated: 2024-09-17T04:29:09.861Z
Reserved: 2021-12-13T00:00:00
Link: CVE-2021-45035
Vulnrichment
No data.
NVD
Status : Modified
Published: 2022-09-23T16:15:10.380
Modified: 2024-11-21T06:31:50.263
Link: CVE-2021-45035
Redhat
No data.