PT-2018-13714 · Tinc+1 · Tinc+1
Michael Yonli
·
Published
2018-10-08
·
Updated
2022-10-25
·
CVE-2018-16738
CVSS v2.0
4.3
Medium
| Vector | AV:N/AC:M/Au:N/C:N/I:P/A:N |
Name of the Vulnerable Software and Affected Versions
tinc versions 1.0.30 through 1.0.34
Description
The issue concerns a broken authentication protocol. Although there is a partial mitigation available, the problem is fully resolved in version 1.1.
Recommendations
For versions 1.0.30 through 1.0.34, update to version 1.1 to fully resolve the issue.
Fix
Improper Authentication
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Alt Linux
Tinc