Unrated severityNVD Advisory· Published Jul 28, 2022· Updated Aug 3, 2024

CVE-2022-1805

Description

When connecting to Amazon Workspaces, the SHA256 presented by AWS connection provisioner is not fully verified by Zero Clients. The issue could be exploited by an adversary that places a MITM (Man in the Middle) between a zero client and AWS session provisioner in the network. This issue is only applicable when connecting to an Amazon Workspace from a PCoIP Zero Client.

Affected products

Chatwoot/Tera2 Zero Clientv5
Range: Firmware version 22.04 and earlier

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

support.hp.com/us-en/document/ish_6545906-6545930-16/hpsbhf03794mitrex_refsource_MISC

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000