| Max CVSS | 7.5 | Min CVSS | 5.0 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2017-18922 | 7.5 |
It was discovered that websockets.c in LibVNCServer prior to 0.9.12 did not properly decode certain WebSocket frames. A malicious attacker could exploit this by sending specially crafted WebSocket frames to a server, causing a heap-based buffer overf
|
01-04-2022 - 18:08 | 30-06-2020 - 11:15 | |
| CVE-2018-21247 | 5.0 |
An issue was discovered in LibVNCServer before 0.9.13. There is an information leak (of uninitialized memory contents) in the libvncclient/rfbproto.c ConnectToRFBRepeater function.
|
10-03-2022 - 15:29 | 17-06-2020 - 16:15 | |
| CVE-2019-20839 | 5.0 |
libvncclient/sockets.c in LibVNCServer before 0.9.13 has a buffer overflow via a long socket filename.
|
10-03-2022 - 15:23 | 17-06-2020 - 16:15 | |
| CVE-2019-20840 | 5.0 |
An issue was discovered in LibVNCServer before 0.9.13. libvncserver/ws_decode.c can lead to a crash because of unaligned accesses in hybiReadAndDecode.
|
10-03-2022 - 15:23 | 17-06-2020 - 16:15 |