Libvnc Project Libvncserver vulnerabilities

24 known vulnerabilities affecting libvnc_project/libvncserver.

Total CVEs

CISA KEV

Public exploits

Exploited in wild

Severity breakdown

CRITICAL8HIGH12MEDIUM4

Vulnerabilities

Page 1 of 2

CVE-2019-20840HIGHCVSS 7.5≤ 0.9.122020-06-17

CVE-2019-20840 [HIGH] CWE-787 CVE-2019-20840: An issue was discovered in LibVNCServer before 0.9.13. libvncserver/ws_decode.c can lead to a crash An issue was discovered in LibVNCServer before 0.9.13. libvncserver/ws_decode.c can lead to a crash because of unaligned accesses in hybiReadAndDecode.

nvd

CVE-2020-14398HIGHCVSS 7.5≤ 0.9.122020-06-17

CVE-2020-14398 [HIGH] CWE-835 CVE-2020-14398: An issue was discovered in LibVNCServer before 0.9.13. An improperly closed TCP connection causes an An issue was discovered in LibVNCServer before 0.9.13. An improperly closed TCP connection causes an infinite loop in libvncclient/sockets.c.

nvd

CVE-2020-14396HIGHCVSS 7.5≤ 0.9.122020-06-17

CVE-2020-14396 [HIGH] CWE-476 CVE-2020-14396: An issue was discovered in LibVNCServer before 0.9.13. libvncclient/tls_openssl.c has a NULL pointer An issue was discovered in LibVNCServer before 0.9.13. libvncclient/tls_openssl.c has a NULL pointer dereference.

nvd

CVE-2018-21247HIGHCVSS 7.5≤ 0.9.122020-06-17

CVE-2018-21247 [HIGH] CWE-909 CVE-2018-21247: An issue was discovered in LibVNCServer before 0.9.13. There is an information leak (of uninitialize An issue was discovered in LibVNCServer before 0.9.13. There is an information leak (of uninitialized memory contents) in the libvncclient/rfbproto.c ConnectToRFBRepeater function.

nvd

CVE-2020-14397HIGHCVSS 7.5≤ 0.9.122020-06-17

CVE-2020-14397 [HIGH] CWE-476 CVE-2020-14397: An issue was discovered in LibVNCServer before 0.9.13. libvncserver/rfbregion.c has a NULL pointer d An issue was discovered in LibVNCServer before 0.9.13. libvncserver/rfbregion.c has a NULL pointer dereference.

nvd

CVE-2019-20839HIGHCVSS 7.5≤ 0.9.122020-06-17

CVE-2019-20839 [HIGH] CWE-120 CVE-2019-20839: libvncclient/sockets.c in LibVNCServer before 0.9.13 has a buffer overflow via a long socket filenam libvncclient/sockets.c in LibVNCServer before 0.9.13 has a buffer overflow via a long socket filename.

nvd

CVE-2020-14402MEDIUMCVSS 5.4≤ 0.9.122020-06-17

CVE-2020-14402 [MEDIUM] CWE-787 CVE-2020-14402: An issue was discovered in LibVNCServer before 0.9.13. libvncserver/corre.c allows out-of-bounds acc An issue was discovered in LibVNCServer before 0.9.13. libvncserver/corre.c allows out-of-bounds access via encodings.

nvd

CVE-2020-14405MEDIUMCVSS 6.5fixed in 0.9.122020-06-17

CVE-2020-14405 [MEDIUM] CWE-770 CVE-2020-14405: An issue was discovered in LibVNCServer before 0.9.13. libvncclient/rfbproto.c does not limit TextCh An issue was discovered in LibVNCServer before 0.9.13. libvncclient/rfbproto.c does not limit TextChat size.

nvd

CVE-2020-14403MEDIUMCVSS 5.4≤ 0.9.122020-06-17

CVE-2020-14403 [MEDIUM] CWE-787 CVE-2020-14403: An issue was discovered in LibVNCServer before 0.9.13. libvncserver/hextile.c allows out-of-bounds a An issue was discovered in LibVNCServer before 0.9.13. libvncserver/hextile.c allows out-of-bounds access via encodings.

nvd

CVE-2020-14404MEDIUMCVSS 5.4fixed in 0.9.122020-06-17

CVE-2020-14404 [MEDIUM] CWE-787 CVE-2020-14404: An issue was discovered in LibVNCServer before 0.9.13. libvncserver/rre.c allows out-of-bounds acces An issue was discovered in LibVNCServer before 0.9.13. libvncserver/rre.c allows out-of-bounds access via encodings.

nvd

CVE-2019-20788CRITICALCVSS 9.8≤ 0.9.122020-04-23

CVE-2019-20788 [CRITICAL] CVE-2019-20788: libvncclient/cursor.c in LibVNCServer through 0.9.12 has a HandleCursorShape integer overflow and he libvncclient/cursor.c in LibVNCServer through 0.9.12 has a HandleCursorShape integer overflow and heap-based buffer overflow via a large height or width value. NOTE: this may overlap CVE-2019-15690.

nvd

CVE-2019-15681HIGHCVSS 7.5fixed in 0.9.122019-10-29

CVE-2019-15681 [HIGH] CWE-665 CVE-2019-15681: LibVNC commit before d01e1bb4246323ba6fcee3b82ef1faa9b1dac82a contains a memory leak (CWE-655) in VN LibVNC commit before d01e1bb4246323ba6fcee3b82ef1faa9b1dac82a contains a memory leak (CWE-655) in VNC server code, which allow an attacker to read stack memory and can be abused for information disclosure. Combined with another vulnerability, it can be used to leak stack memory and bypass ASLR. This attack appear to be exploitable via network connecti

nvd

CVE-2018-20750CRITICALCVSS 9.8fixed in 0.9.122019-01-30

CVE-2018-20750 [CRITICAL] CVE-2018-20750: LibVNC through 0.9.12 contains a heap out-of-bounds write vulnerability in libvncserver/rfbserver.c. LibVNC through 0.9.12 contains a heap out-of-bounds write vulnerability in libvncserver/rfbserver.c. The fix for CVE-2018-15127 was incomplete.

nvd

CVE-2018-20748CRITICALCVSS 9.8fixed in 0.9.122019-01-30

CVE-2018-20748 [CRITICAL] CVE-2018-20748: LibVNC before 0.9.12 contains multiple heap out-of-bounds write vulnerabilities in libvncclient/rfbp LibVNC before 0.9.12 contains multiple heap out-of-bounds write vulnerabilities in libvncclient/rfbproto.c. The fix for CVE-2018-20019 was incomplete.

nvd

CVE-2018-20749CRITICALCVSS 9.8fixed in 0.9.122019-01-30

CVE-2018-20749 [CRITICAL] CVE-2018-20749: LibVNC before 0.9.12 contains a heap out-of-bounds write vulnerability in libvncserver/rfbserver.c. LibVNC before 0.9.12 contains a heap out-of-bounds write vulnerability in libvncserver/rfbserver.c. The fix for CVE-2018-15127 was incomplete.

nvd

CVE-2018-20019CRITICALCVSS 9.8fixed in 0.9.122018-12-19

CVE-2018-20019 [CRITICAL] CWE-787 CVE-2018-20019: LibVNC before commit a83439b9fbe0f03c48eb94ed05729cb016f8b72f contains multiple heap out-of-bound wr LibVNC before commit a83439b9fbe0f03c48eb94ed05729cb016f8b72f contains multiple heap out-of-bound write vulnerabilities in VNC client code that can result remote code execution

nvd

CVE-2018-15127CRITICALCVSS 9.8fixed in 0.9.122018-12-19

CVE-2018-15127 [CRITICAL] CWE-787 CVE-2018-15127: LibVNC before commit 502821828ed00b4a2c4bef90683d0fd88ce495de contains heap out-of-bound write vulne LibVNC before commit 502821828ed00b4a2c4bef90683d0fd88ce495de contains heap out-of-bound write vulnerability in server code of file transfer extension that can result remote code execution

nvd

CVE-2018-20020CRITICALCVSS 9.8fixed in 0.9.122018-12-19

CVE-2018-20020 [CRITICAL] CWE-787 CVE-2018-20020: LibVNC before commit 7b1ef0ffc4815cab9a96c7278394152bdc89dc4d contains heap out-of-bound write vulne LibVNC before commit 7b1ef0ffc4815cab9a96c7278394152bdc89dc4d contains heap out-of-bound write vulnerability inside structure in VNC client code that can result remote code execution

nvd

CVE-2018-15126CRITICALCVSS 9.8fixed in 0.9.122018-12-19

CVE-2018-15126 [CRITICAL] CWE-416 CVE-2018-15126: LibVNC before commit 73cb96fec028a576a5a24417b57723b55854ad7b contains heap use-after-free vulnerabi LibVNC before commit 73cb96fec028a576a5a24417b57723b55854ad7b contains heap use-after-free vulnerability in server code of file transfer extension that can result remote code execution

nvd

CVE-2018-20021HIGHCVSS 7.5fixed in 0.9.122018-12-19

CVE-2018-20021 [HIGH] CWE-835 CVE-2018-20021: LibVNC before commit c3115350eb8bb635d0fdb4dbbb0d0541f38ed19c contains a CWE-835: Infinite loop vuln LibVNC before commit c3115350eb8bb635d0fdb4dbbb0d0541f38ed19c contains a CWE-835: Infinite loop vulnerability in VNC client code. Vulnerability allows attacker to consume excessive amount of resources like CPU and RAM

nvd

1 / 2Next →