Apache Guacamole 1.5.1 and older may incorrectly calculate the lengths of instruction elements sent during the Guacamole protocol handshake, potentially allowing an attacker to inject Guacamole instructions during the handshake through specially-crafted data.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: apache
Published: 2023-06-07T08:06:36.061Z
Updated: 2024-08-02T14:28:51.955Z
Reserved: 2023-04-12T20:53:54.616Z
Link: CVE-2023-30575
Vulnrichment
No data.
NVD
Status : Modified
Published: 2023-06-07T09:15:09.993
Modified: 2023-06-15T08:15:09.223
Link: CVE-2023-30575
Redhat
No data.