|Category:||Huawei EulerOS Local Security Checks|
|Title:||Huawei EulerOS: Security Advisory for tigervnc (EulerOS-SA-2020-2422)|
|Summary:||The remote host is missing an update for the Huawei EulerOS; 'tigervnc' package(s) announced via the EulerOS-SA-2020-2422 advisory.|
The remote host is missing an update for the Huawei EulerOS
'tigervnc' package(s) announced via the EulerOS-SA-2020-2422 advisory.
In rfb/CSecurityTLS.cxx and rfb/CSecurityTLS.java in TigerVNC before 1.11.0, viewers mishandle TLS certificate exceptions. They store the certificates as authorities, meaning that the owner of a certificate could impersonate any server after a client had added an exception.(CVE-2020-26117)
'tigervnc' package(s) on Huawei EulerOS V2.0SP9.
Please install the updated package(s).
Common Vulnerability Exposure (CVE) ID: CVE-2020-26117|
|Copyright||Copyright (C) 2020 Greenbone Networks GmbH|
|This is only one of 86218 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.