meshcentral@1.1.31 vulnerabilities

Web based remote computer management server

latest version

1.1.33
first published

8 years ago
latest version published

17 days ago
licenses detected
- Apache-2.0
  >=0
View meshcentral package health on Snyk Advisor Open this link in a new tab

Report a new vulnerability Found a mistake?

Direct Vulnerabilities

Known vulnerabilities in the meshcentral package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.

Fix for free

Vulnerability Vulnerable Version

Vulnerability	Vulnerable Version
H Use of a Cryptographic Primitive with a Risky Implementation meshcentral is a Web based remote computer management server Affected versions of this package are vulnerable to Use of a Cryptographic Primitive with a Risky Implementation due to the use of `hmac_md5`. An attacker can compromise the confidentiality of data by applying brute force to the encrypted contents. How to fix Use of a Cryptographic Primitive with a Risky Implementation? There is no fixed version for `meshcentral`.	>=0.0.0
H Improper Certificate Validation meshcentral is a Web based remote computer management server Affected versions of this package are vulnerable to Improper Certificate Validation for SSL certificates. An attacker can intercept or manipulate secure communications by presenting a forged or self-signed certificate without being detected. How to fix Improper Certificate Validation? There is no fixed version for `meshcentral`.	*

Use of a Cryptographic Primitive with a Risky Implementation

meshcentral is a Web based remote computer management server

Affected versions of this package are vulnerable to Use of a Cryptographic Primitive with a Risky Implementation due to the use of hmac_md5. An attacker can compromise the confidentiality of data by applying brute force to the encrypted contents.

How to fix Use of a Cryptographic Primitive with a Risky Implementation?

There is no fixed version for meshcentral.

>=0.0.0

Improper Certificate Validation

meshcentral is a Web based remote computer management server

Affected versions of this package are vulnerable to Improper Certificate Validation for SSL certificates. An attacker can intercept or manipulate secure communications by presenting a forged or self-signed certificate without being detected.

How to fix Improper Certificate Validation?

There is no fixed version for meshcentral.

Go back to all versions of this package

meshcentral@1.1.31 vulnerabilities

Web based remote computer management server

latest version

first published

latest version published

licenses detected

Direct Vulnerabilities