CVE-2019-15681 — Improper Initialization in Project Libvncserver

CWE-665 — Improper Initialization CWE-200 — Sensitive Information Exposure16 documents8 sources

Severity

7.5HIGHNVD

OSV9.8

EPSS

6.2%

top 9.12%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

David King Vino Libvncserver Project Libvncserver Tightvnc +10 more

Timeline

PublishedOct 29

Latest updateMay 24

Description

LibVNC commit before d01e1bb4246323ba6fcee3b82ef1faa9b1dac82a contains a memory leak (CWE-655) in VNC server code, which allow an attacker to read stack memory and can be abused for information disclosure. Combined with another vulnerability, it can be used to leak stack memory and bypass ASLR. This attack appear to be exploitable via network connectivity. These vulnerabilities have been fixed in commit d01e1bb4246323ba6fcee3b82ef1faa9b1dac82a.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 3.9 | Impact: 3.6

Affected Packages11 packages

▶NVDlibvnc_project/libvncserver< 0.9.12

▶Debianlibvncserver_project/libvncserver< 0.9.12+dfsg-3+3

▶CVEListV5kaspersky/libvnc0.9.12

▶NVDsiemens/simatic_itc1500_firmware3.0.0.0 — 3.2.1.0

▶NVDsiemens/simatic_itc1900_firmware3.0.0.0 — 3.2.1.0

Also affects: Debian Linux 8.0, 9.0, Ubuntu Linux 14.04, 16.04, 18.04, 18.10

Patches

Patch: github.com ↗Patch: github.com ↗

🔴Vulnerability Details

GHSA

GHSA-gg2p-m82f-fgjg: LibVNC commit before d01e1bb4246323ba6fcee3b82ef1faa9b1dac82a contains a memory leak (CWE-655) in VNC server code, which allow an attacker to read sta↗2022-05-24

▶

OSV

vino vulnerabilities↗2020-10-07

▶

OSV

italc vulnerabilities↗2020-09-28

▶

OSV

libvncserver vulnerabilities↗2020-07-01

▶

OSV

CVE-2019-15681: LibVNC commit before d01e1bb4246323ba6fcee3b82ef1faa9b1dac82a contains a memory leak (CWE-655) in VNC server code, which allow an attacker to read sta↗2019-10-29

▶

📋Vendor Advisories

Ubuntu

iTALC vulnerabilities↗2020-10-20

▶

Ubuntu

Vino vulnerabilities↗2020-10-07

▶

Ubuntu

iTALC vulnerabilities↗2020-09-28

▶

Ubuntu

LibVNCServer vulnerabilities↗2020-07-01

▶

Red Hat

libvncserver: information disclosure and ASLR bypass↗2019-10-30

▶

💬Community

Bugzilla

CVE-2019-15681 libvncserver: information disclosure and ASLR bypass↗2020-07-08

▶

Bugzilla

CVE-2019-15681 libvncserver: information disclosure and ASLR bypass [fedora-all]↗2020-07-08

▶

Bugzilla

CVE-2019-15681 libvncserver: information disclosure and ASLR bypass [epel-7]↗2020-07-08

▶