CVE-2021-36158

In the xrdp package (in branches through 3.14) for Alpine Linux, RDP sessions are vulnerable to man-in-the-middle attacks because pre-generated RSA certificates and private keys are used.
References
Configurations

Configuration 1

cpe:2.3:a:alpinelinux:aports:*:*:*:*:*:alpine:*:*

Information

Published : 2021-07-05 11:15

Updated : 2021-07-08 06:01


NVD link : CVE-2021-36158

Mitre link : CVE-2021-36158

Products Affected
No products.
CWE
CWE-312

Cleartext Storage of Sensitive Information