CVE-2024-35164 – Apache Guacamole SSH Console Code Execution Vulnerability

July 2, 2025

CVE ID : CVE-2024-35164

Published : July 2, 2025, 12:15 p.m. | 3 hours, 1 minute ago

Description : The terminal emulator of Apache Guacamole 1.5.5 and older does not properly validate console codes received from servers via text-based protocols like SSH. If a malicious user has access to a text-based connection, a specially-crafted sequence of console codes could allow arbitrary code to be executed
with the privileges of the running guacd process.

Users are recommended to upgrade to version 1.6.0, which fixes this issue.

Severity: 6.8 | MEDIUM

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-46647 – Apache APISIX OpenID-Connect Plugin Issuer Key Reuse Vulnerability

Next Article CVE-2025-45006 – RISC-V Processor Mstatus.SUM Bit Retention Privilege Escalation Vulnerability

Full-Stack Techies vs Toptal: Which Is Better for React.js Outsourcing?

The AI productivity paradox in software engineering: Balancing efficiency and human skill retention

The impact of gray work on software development

CSS Intelligence: Speculating On The Future Of A Smarter Language

Your Roku has secret menus and screens – here’s how to unlock them

Add Paramount+, STARZ, and more to your Prime Video account for $0.99 a month – here’s how

My new favorite keychain accessory gives me 2TB of SSD storage instantly

HP’s latest OmniBook finally sold me on the 2-in-1 form factor (and it’s on sale)

Simplifying Stream Handling with Laravel’s resource Method

Simplifying Stream Handling with Laravel’s resource Method

Intelligent Parsing and Formatting of Names in PHP Applications

This Week in Laravel: Cursor Rules, Nightwatch Review, and Race Conditions

Microsoft confirms Windows 11 KB5060829 issues, but you can safely ignore it

Microsoft confirms Windows 11 KB5060829 issues, but you can safely ignore it

Hash Calculator – calculates around 50 cryptographic hashes of strings and files

Rilasciato Thunderbird 140 ESR: Un’attenzione alle esigenze aziendali

CVE-2024-35164 – Apache Guacamole SSH Console Code Execution Vulnerability

213% Increase in Ransomware Attacks Targeting Organizations With First Quarter of 2025

Cisco fixes maximum-severity flaw in enterprise unified comms platform (CVE-2025-20309)

CVE-2025-44180 – PhpGurukul Vehicle Record Management System XSS

Dental SEO & Marketing in Ontario

CVE-2025-44110 – FluxBB Cross-Site Scripting (XSS) in Forum Description Field

My top 5 picks for the best Memorial Day phone deals so far: Apple, Samsung, and more

CVE-2025-46690 – Ververica Platform SQL Connector Unauthorized Access Vulnerability

How I make my own NFC tags to share my Wi-Fi password with guests – it’s easy!

Amazon Bedrock Model Distillation: Boost function calling accuracy while reducing cost and latency

CVE-2025-4470 – SourceCodester Online Student Clearance System Cross-Site Scripting Vulnerability

CVE-2024-35164 – Apache Guacamole SSH Console Code Execution Vulnerability

Related Posts