Unrated severityNVD Advisory· Published Jul 5, 2021· Updated Aug 4, 2024
CVE-2021-36158
CVE-2021-36158
Description
In the xrdp package (in branches through 3.14) for Alpine Linux, RDP sessions are vulnerable to man-in-the-middle attacks because pre-generated RSA certificates and private keys are used.
Affected products
2- Alpine Linux/xrdp packagedescription
- Range: <= 3.14
Patches
Vulnerability mechanics
References
1- gitlab.alpinelinux.org/alpine/aports/-/issues/12811mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.