CVE-2023-51842: MeshCentral algorithm-downgrade issue
An algorithm-downgrade issue was discovered in Ylianst MeshCentral 1.1.16.
References
- github.com/Ylianst/MeshCentral/commit/a5efc5e899b8809293b297df045cff5ec0eb448b
- github.com/Ylianst/MeshCentral/tree/master
- github.com/advisories/GHSA-wpxw-5xfm-x22v
- github.com/tianjk99/Cryptographic-Misuses/blob/main/Bug_MeshCentral.md
- github.com/tianjk99/Cryptographic-Misuses/blob/main/CVE-2023-51842.md
- nvd.nist.gov/vuln/detail/CVE-2023-51842
Code Behaviors & Features
Detect and mitigate CVE-2023-51842 with GitLab Dependency Scanning
Secure your software supply chain by verifying that all open source dependencies used in your projects contain no disclosed vulnerabilities. Learn more about Dependency Scanning →