all InfoSec news
MeshCentral Cross-Site Websocket Hijacking Vulnerability (CVE-2024-26135)
Blog - Praetorian www.praetorian.com
Overview In this article we discuss a recent cross-site websocket hijacking (CSWSH) vulnerability that we identified in MeshCentral, a web-based remote monitoring and endpoint management solution. MITRE assigned the CVE identifier CVE-2024-26135. End users can use MeshCentral to install agents that communicate with a centralized server. The centralized server then allows users to perform remote […]
The post MeshCentral Cross-Site Websocket Hijacking Vulnerability (CVE-2024-26135) appeared first on Praetorian.
article can cross-site cswsh cve discuss end endpoint endpoint management hijacking install management mitre monitoring remote monitoring server solution vulnerability vulnerability research web websocket