VYPR
Unrated severityNVD Advisory· Published May 26, 2011· Updated Jun 16, 2026

CVE-2011-1775

CVE-2011-1775

Description

The CSecurityTLS::processMsg function in common/rfb/CSecurityTLS.cxx in the vncviewer component in TigerVNC 1.1beta1 does not properly verify the server's X.509 certificate, which allows man-in-the-middle attackers to spoof a TLS VNC server via an arbitrary certificate.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Tigervnc/Tigervnc2 versions
    cpe:2.3:a:tigervnc:tigervnc:1.1:beta1:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:tigervnc:tigervnc:1.1:beta1:*:*:*:*:*:*
    • (no CPE)range: =1.1beta1

Patches

Vulnerability mechanics

References

11

News mentions

0

No linked articles in our index yet.