meshcentral@1.1.27 vulnerabilities

Web based remote computer management server

Direct Vulnerabilities

Known vulnerabilities in the meshcentral package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for free
Vulnerability Vulnerable Version
  • H
Use of a Cryptographic Primitive with a Risky Implementation

meshcentral is a Web based remote computer management server

Affected versions of this package are vulnerable to Use of a Cryptographic Primitive with a Risky Implementation due to the use of hmac_md5. An attacker can compromise the confidentiality of data by applying brute force to the encrypted contents.

How to fix Use of a Cryptographic Primitive with a Risky Implementation?

There is no fixed version for meshcentral.

>=0.0.0
  • H
Improper Certificate Validation

meshcentral is a Web based remote computer management server

Affected versions of this package are vulnerable to Improper Certificate Validation for SSL certificates. An attacker can intercept or manipulate secure communications by presenting a forged or self-signed certificate without being detected.

How to fix Improper Certificate Validation?

There is no fixed version for meshcentral.

*