Exploit for #VU29481 Input validation error in Guacamole

Exploit for #VU29481 Input validation error in Guacamole

Published: 2020-07-06

Vulnerability identifier: #VU29481

Vulnerability risk: Medium

CVSSv3.1: 5.9 [CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C]

CVE-ID: CVE-2020-9497

CWE-ID: CWE-20

Exploitation vector: Network

Exploits in database: 3

July 6, 2020
- CPR-Zero: CVE-2020-9497 (v2) [CPR CheckPoint]
- CPR-Zero: CVE-2020-9497 (v3) [CPR CheckPoint]
- CPR-Zero: CVE-2020-9497 (v1) [CPR CheckPoint]

Impact: Information disclosure

Vulnerable software:
Guacamole
Server applications / Remote management servers, RDP, SSH

Vendor: Apache Foundation