CVE-2019-8259 — Improper Initialization in Ultravnc

CWE-665 — Improper Initialization CWE-401 — Missing Release of Memory after Effective Lifetime5 documents3 sources

Severity

7.5HIGHNVD

EPSS

0.8%

top 25.57%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Siemens Sinumerik Access Mymachine P2P Siemens Sinumerik PCU Base Win10 Software IPC Uvnc Ultravnc +2 more

Timeline

PublishedMar 5

Latest updateMay 13

Description

UltraVNC revision 1198 contains multiple memory leaks (CWE-655) in VNC client code, which allow an attacker to read stack memory and can be abused for information disclosure. Combined with another vulnerability, it can be used to leak stack memory and bypass ASLR. This attack appears to be exploitable via network connectivity. These vulnerabilities have been fixed in revision 1199.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 3.9 | Impact: 3.6

Affected Packages5 packages

▶NVDuvnc/ultravnc< 1.2.2.3

▶CVEListV5ultravnc/ultravnc1.2.2.3

▶NVDsiemens/sinumerik_access_mymachine_p2p< 4.8

▶NVDsiemens/sinumerik_pcu_base_win10_software_ipc< 14.00

▶NVDsiemens/sinumerik_pcu_base_win7_software_ipc12.01

🔴Vulnerability Details

GHSA

GHSA-mhxq-j55c-q97g: UltraVNC revision 1198 contains multiple memory leaks (CWE-655) in VNC client code, which allow an attacker to read stack memory and can be abused for↗2022-05-13

▶

📋Vendor Advisories

CISA ICS

Siemens SIMATIC UltraVNC HMI WinCC Products↗2021-05-11

▶

CISA ICS

Siemens SINAMICS Medium Voltage Products Remote Access (Update B)↗2021-05-11

▶

CISA ICS

Siemens SINUMERIK↗2020-06-12

▶