CVE-2018-15127: LibVNC before commit 502821828ed00b4a2c4bef90683d0fd88ce495de contains heap out-of-bound write vulnerability in server code of file transfer extension that can…

critical9.8CVSS 3.1

AVNACLPRNUINSUCHIHAH

LibVNC before commit 502821828ed00b4a2c4bef90683d0fd88ce495de contains heap out-of-bound write vulnerability in server code of file transfer extension that can result remote code execution

Affected

29 ranges· showing 25

Vendor	Product	Version range	Fixed in
canonical	ubuntu_linux	—	—
canonical	ubuntu_linux	—	—
canonical	ubuntu_linux	—	—
canonical	ubuntu_linux	—	—
debian	debian_linux	—	—
debian	debian_linux	—	—
debian	libvncserver	< libvncserver 0.9.11+dfsg-1.2 (bookworm)	libvncserver 0.9.11+dfsg-1.2 (bookworm)
debian	libvncserver	< libvncserver 0.9.11+dfsg-1.3 (bookworm)	libvncserver 0.9.11+dfsg-1.3 (bookworm)
libvnc_project	libvncserver	< 0.9.12	0.9.12
libvncserver_project	libvncserver	>= 0 < 0.9.11+dfsg-1.3	0.9.11+dfsg-1.3
libvncserver_project	libvncserver	>= 0 < 0.9.11+dfsg-1.2	0.9.11+dfsg-1.2
libvncserver_project	libvncserver	>= 0 < 0.9.11+dfsg-1.3	0.9.11+dfsg-1.3
libvncserver_project	libvncserver	>= 0 < 0.9.11+dfsg-1.2	0.9.11+dfsg-1.2
libvncserver_project	libvncserver	>= 0 < 0.9.11+dfsg-1.3	0.9.11+dfsg-1.3
libvncserver_project	libvncserver	>= 0 < 0.9.11+dfsg-1.2	0.9.11+dfsg-1.2
libvncserver_project	libvncserver	>= 0 < 0.9.11+dfsg-1.3	0.9.11+dfsg-1.3
libvncserver_project	libvncserver	>= 0 < 0.9.11+dfsg-1.2	0.9.11+dfsg-1.2
redhat	enterprise_linux_desktop	—	—
redhat	enterprise_linux_server	—	—
redhat	enterprise_linux_server_aus	—	—
redhat	enterprise_linux_server_eus	—	—
redhat	enterprise_linux_server_tus	—	—
redhat	enterprise_linux_workstation	—	—
siemens	simatic_itc1500_firmware	>= 3.0.0.0 < 3.2.1.0	3.2.1.0
siemens	simatic_itc1500_pro_firmware	>= 3.0.0.0 < 3.2.1.0	3.2.1.0

CVSS provenance

nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

nvdv3.09.8CRITICALCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

osv9.8CRITICAL