| Max CVSS | 7.5 | Min CVSS | 5.0 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2019-15681 | 5.0 |
LibVNC commit before d01e1bb4246323ba6fcee3b82ef1faa9b1dac82a contains a memory leak (CWE-655) in VNC server code, which allow an attacker to read stack memory and can be abused for information disclosure. Combined with another vulnerability, it can
|
05-04-2022 - 21:10 | 29-10-2019 - 19:15 | |
| CVE-2017-18922 | 7.5 |
It was discovered that websockets.c in LibVNCServer prior to 0.9.12 did not properly decode certain WebSocket frames. A malicious attacker could exploit this by sending specially crafted WebSocket frames to a server, causing a heap-based buffer overf
|
01-04-2022 - 18:08 | 30-06-2020 - 11:15 | |
| CVE-2019-20788 | 7.5 |
libvncclient/cursor.c in LibVNCServer through 0.9.12 has a HandleCursorShape integer overflow and heap-based buffer overflow via a large height or width value. NOTE: this may overlap CVE-2019-15690.
|
10-03-2022 - 14:54 | 23-04-2020 - 19:15 | |
| CVE-2019-15680 | 5.0 |
TightVNC code version 1.3.10 contains null pointer dereference in HandleZlibBPP function, which results Denial of System (DoS). This attack appear to be exploitable via network connectivity.
|
09-12-2020 - 17:15 | 29-10-2019 - 19:15 | |
| CVE-2019-15681 | 5.0 |
LibVNC commit before d01e1bb4246323ba6fcee3b82ef1faa9b1dac82a contains a memory leak (CWE-655) in VNC server code, which allow an attacker to read stack memory and can be abused for information disclosure. Combined with another vulnerability, it can
|
30-09-2020 - 20:15 | 29-10-2019 - 19:15 |