Added |
CVSS V3.1 |
|
NIST AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
|
Added |
CVSS V2 |
|
NIST (AV:N/AC:M/Au:N/C:C/I:C/A:C)
|
Added |
CWE |
|
NIST CWE-119
|
Added |
CPE Configuration |
|
OR
*cpe:2.3:a:apache:guacamole:*:*:*:*:*:*:*:* versions up to (including) 1.1.0
|
Changed |
Reference Type |
https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44525 No Types Assigned
|
https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44525 Third Party Advisory
|
Changed |
Reference Type |
https://lists.apache.org/thread.html/r26fb170edebff842c74aacdb1333c1338f0e19e5ec7854d72e4680fc@%3Cannounce.apache.org%3E No Types Assigned
|
https://lists.apache.org/thread.html/r26fb170edebff842c74aacdb1333c1338f0e19e5ec7854d72e4680fc@%3Cannounce.apache.org%3E Mailing List, Third Party Advisory
|
Changed |
Reference Type |
https://lists.apache.org/thread.html/rff824b38ebd2fddc726b816f0e509696b83b9f78979d0cd021ca623b%40%3Cannounce.guacamole.apache.org%3E No Types Assigned
|
https://lists.apache.org/thread.html/rff824b38ebd2fddc726b816f0e509696b83b9f78979d0cd021ca623b%40%3Cannounce.guacamole.apache.org%3E Mailing List, Third Party Advisory
|
Changed |
Reference Type |
https://research.checkpoint.com/2020/apache-guacamole-rce/ No Types Assigned
|
https://research.checkpoint.com/2020/apache-guacamole-rce/ Third Party Advisory
|
Added |
CVSS V2 Metadata |
|
Victim must voluntarily interact with attack mechanism
|