CVE-2017-2488

HIGH

7.5

CVSS Severity Score

EPSS Score0.0440%

EPSS Percentile30.78th

Published2021年12月23日

Last Modified2024年11月21日

Vulnerability Description

A cryptographic weakness existed in the authentication protocol of Remote Desktop. This issue was addressed by implementing the Secure Remote Password authentication protocol. This issue is fixed in Apple Remote Desktop 3.9. An attacker may be able to capture cleartext passwords.

Affected Platforms (CPE)

📦

Apple

Remote Desktop

< 3.9

References & Advisories

🔗 https://support.apple.com/en-us/HT207622

関連する脆弱性情報

CVE-2020-188910.0

A security feature bypass issue in WhatsApp Desktop versions prior to v0.3.4932 could have allowed for sandbox escape in Electron ...

CVE-2001-055510.0

ScreamingMedia SITEWare versions 2.5 through 3.1 allows a remote attacker to read world-readable files via a .. (dot dot) attack ...

CVE-2020-696610.0

In ApexPro Telemetry Server Versions 4.2 and prior, CARESCAPE Telemetry Server v4.2 & prior, Clinical Information Center (CIC) Ver...

CVE-2002-067910.0

Buffer overflow in Common Desktop Environment (CDE) ToolTalk RPC database server (rpc.ttdbserverd) allows remote attackers to exec...