📦 Meshcentral

by Meshcentral

🔍 What is Meshcentral?

Description coming soon...

🛡️ Security Overview

Click on a severity to filter vulnerabilities

⚠️ Known Vulnerabilities

CVE-2023-51837

CRITICAL CVSS 9.8 Jan 30, 2024

MeshCentral 1.1.16 fails to properly validate SSL certificates when establishing connections, allowing man-in-the-middle attackers to intercept and manipulate communications. This affects all users ru...

CVE-2024-26135

HIGH CVSS 8.3 Feb 20, 2024

This CVE describes a cross-site websocket hijacking vulnerability in MeshCentral's control.ashx endpoint, which handles administrative actions. Attackers can exploit it by tricking users into clicking...

CVE-2023-51838

HIGH CVSS 7.5 Feb 2, 2024

MeshCentral 1.1.16 uses weak cryptographic algorithms that could allow attackers to decrypt sensitive data or bypass authentication. This affects all users running the vulnerable version of MeshCentra...

CVE-2023-51842

HIGH CVSS 7.5 Jan 29, 2024

CVE-2023-51842 is an algorithm-downgrade vulnerability in MeshCentral 1.1.16 that allows attackers to force weaker cryptographic algorithms during connections, potentially compromising security. This ...