Vulnerability DatabaseCVE-2024-35164

CVE-2024-35164:
Apache Guacamole vulnerability analysis and mitigation

Overview

The vulnerability (CVE-2024-35164) affects Apache Guacamole versions 1.5.5 and older, specifically targeting its terminal emulator component. The vulnerability was discovered by Tizian Seehaus (Tibotix) and was publicly disclosed on July 1, 2025. The issue stems from improper validation of console codes received from servers through text-based protocols such as SSH (Apache Advisory, NVD).

Technical details

The vulnerability has been assigned a CVSS v3.1 base score of 6.8 (Medium) by Apache Software Foundation with the vector string CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N. However, NIST's NVD assessment indicates a higher severity with a CVSS score of 7.5 (High) and vector string CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H. The vulnerability is classified under CWE-129 (Improper Validation of Array Index) by the Apache Software Foundation (NVD).

Impact

If successfully exploited, this vulnerability allows arbitrary code execution with the privileges of the running guacd process. The vulnerability affects all versions of Apache Guacamole from version 0.8.0 up to version 1.5.5 (Apache Advisory).

Mitigation and workarounds

Users are strongly recommended to upgrade to Apache Guacamole version 1.6.0, which contains the fix for this vulnerability (Apache Advisory).

Additional resources

Source: This report was generated using AI

View vulnerable instances

Not a customer? See how Wiz maps CVEs like this one to real cloud attack paths.

Watch 12-min demo

7.5

Score

Published July 2, 2025

Severity HIGH

CNA Score 6.8

Affected Technologies

Apache Guacamole
Linux Fedora

Has Public Exploit No

Has CISA KEV Exploit No

CISA KEV Release Date N/A

CISA KEV Due Date N/A

Exploitation Probability Percentile (EPSS) 9.8

Exploitation Probability (EPSS) N/A

Affected packages and libraries

guacd-debuginfo
libguac-client-kubernetes

Sources

Alpine Security Tracker
- Alpine 3.23 Severity HIGHHas FixAdded at: Dec 04, 2025
- Alpine edge Severity HIGHHas FixAdded at: Aug 11, 2025
VulnCheck NVD++
- Linux Severity MEDIUMNo FixAdded at: Jul 03, 2025
NVD
- Linux Severity HIGHHas FixAdded at: Jul 10, 2025

Get a CVE risk assessment

Get a prioritized view of CVEs in your cloud—so you can focus on what's exploitable, not just what's listed.

Request assessment

Related Apache Guacamole vulnerabilities:

CVE ID	Severity	Score	Technologies	Component name	CISA KEV exploit	Has fix	Published date
CVE-2023-43826	HIGH	8.8	Apache Guacamole	cpe:2.3:a:apache:guacamole	No	Yes	Dec 19, 2023
CVE-2023-30576	HIGH	8.1	Apache Guacamole	cpe:2.3:a:apache:guacamole	No	Yes	Jun 07, 2023
CVE-2024-35164	HIGH	7.5	Apache Guacamole	guacd-debuginfo	No	Yes	Jul 02, 2025
CVE-2023-30575	HIGH	7.5	Apache Guacamole	cpe:2.3:a:apache:guacamole	No	Yes	Jun 07, 2023
CVE-2025-12194	MEDIUM	5.9	Java	guacamole-client	No	Yes	Oct 24, 2025

Free Vulnerability Assessment

Benchmark your Cloud Security Posture

Evaluate your cloud security practices across 9 security domains to benchmark your risk level and identify gaps in your defenses.

Request assessment

Additional Wiz resources

Cloud Vulnerability DB

A community-led vulnerabilities database

Cloud Threat Landscape

A threat intelligence database

PEACH

A tenant isolation framework

Get a personalized demo

Ready to see Wiz in action?

"Best User Experience I have ever seen, provides full visibility to cloud workloads."

David EstlickCISO

"Wiz provides a single pane of glass to see what is going on in our cloud environments."

Adam FletcherChief Security Officer

"We know that if Wiz identifies something as critical, it actually is."

Greg PoniatowskiHead of Threat and Vulnerability Management

Get a demo

CVE-2024-35164: Apache Guacamole vulnerability analysis and mitigation