cbcvebase.
CVE-2018-20022
published 2018-12-19

CVE-2018-20022: LibVNC before 2f5b2ad1c6c99b1ac6482c95844a84d66bb52838 contains multiple weaknesses CWE-665: Improper Initialization vulnerability in VNC client code that…

PriorityP341high7.5CVSS 3.0
AVNACLPRNUINSUCHINAN
EPSS
2.94%
85.4th percentile
LibVNC before 2f5b2ad1c6c99b1ac6482c95844a84d66bb52838 contains multiple weaknesses CWE-665: Improper Initialization vulnerability in VNC client code that allows attacker to read stack memory and can be abuse for information disclosure. Combined with another vulnerability, it can be used to leak stack memory layout and in bypassing ASLR

Affected

19 ranges
VendorProductVersion rangeFixed in
canonicalubuntu_linux
canonicalubuntu_linux
canonicalubuntu_linux
canonicalubuntu_linux
debiandebian_linux
debiandebian_linux
debianlibvncserver< libvncserver 0.9.11+dfsg-1.2 (bookworm)libvncserver 0.9.11+dfsg-1.2 (bookworm)
debianssvnc< libvncserver 0.9.11+dfsg-1.2 (bookworm)libvncserver 0.9.11+dfsg-1.2 (bookworm)
debiantightvnc< libvncserver 0.9.11+dfsg-1.2 (bookworm)libvncserver 0.9.11+dfsg-1.2 (bookworm)
debianveyon< libvncserver 0.9.11+dfsg-1.2 (bookworm)libvncserver 0.9.11+dfsg-1.2 (bookworm)
libvnc_projectlibvncserver< 0.9.120.9.12
libvncserver_projectlibvncserver>= 0 < 0.9.11+dfsg-1.20.9.11+dfsg-1.2
libvncserver_projectlibvncserver>= 0 < 0.9.11+dfsg-1.20.9.11+dfsg-1.2
libvncserver_projectlibvncserver>= 0 < 0.9.11+dfsg-1.20.9.11+dfsg-1.2
libvncserver_projectlibvncserver>= 0 < 0.9.11+dfsg-1.20.9.11+dfsg-1.2
tightvnctightvnc>= 0 < 1:1.3.9-9.11:1.3.9-9.1
tightvnctightvnc>= 0 < 1:1.3.9-9.11:1.3.9-9.1
tightvnctightvnc>= 0 < 1:1.3.9-9.11:1.3.9-9.1
tightvnctightvnc>= 0 < 1:1.3.9-9.11:1.3.9-9.1

CVSS provenance

nvdv3.07.5HIGHCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:P/I:N/A:N
osv9.8CRITICAL
vendor_ubuntu9.8CRITICAL
vendor_debian7.5HIGH
vendor_redhat7.5HIGH
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.