Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
vnc vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2019-8273
UltraVNC revision 1211 has a heap buffer overflow vulnerability in VNC server code inside file transfer request handler, which can potentially result in code execution. This attack appears to be exploitable via network connectivity. This vulnerability has been fixed in revision 1...
Uvnc Ultravnc
Siemens Sinumerik Access Mymachine\\/p2p
Siemens Sinumerik Pcu Base Win10 Software\\/ipc
Siemens Sinumerik Pcu Base Win7 Software\\/ipc
7.5
CVSSv2
CVE-2019-8274
UltraVNC revision 1211 has a heap buffer overflow vulnerability in VNC server code inside file transfer offer handler, which can potentially in result code execution. This attack appears to be exploitable via network connectivity. This vulnerability has been fixed in revision 121...
Uvnc Ultravnc
Siemens Sinumerik Access Mymachine\\/p2p
Siemens Sinumerik Pcu Base Win10 Software\\/ipc
Siemens Sinumerik Pcu Base Win7 Software\\/ipc
7.5
CVSSv2
CVE-2019-8275
UltraVNC revision 1211 has multiple improper null termination vulnerabilities in VNC server code, which result in out-of-bound data being accessed by remote users. This attack appears to be exploitable via network connectivity. These vulnerabilities have been fixed in revision 12...
Uvnc Ultravnc
Siemens Sinumerik Access Mymachine\\/p2p
Siemens Sinumerik Pcu Base Win10 Software\\/ipc
Siemens Sinumerik Pcu Base Win7 Software\\/ipc
5
CVSSv2
CVE-2019-8276
UltraVNC revision 1211 has a stack buffer overflow vulnerability in VNC server code inside file transfer request handler, which can result in Denial of Service (DoS). This attack appears to be exploitable via network connectivity. This vulnerability has been fixed in revision 121...
Uvnc Ultravnc
Siemens Sinumerik Access Mymachine\\/p2p
Siemens Sinumerik Pcu Base Win10 Software\\/ipc
Siemens Sinumerik Pcu Base Win7 Software\\/ipc
5
CVSSv2
CVE-2013-1430
An issue exists in xrdp prior to 0.9.1. When successfully logging in using RDP into an xrdp session, the file ~/.vnc/sesman_${username}_passwd is created. Its content is the equivalent of the user's cleartext password, DES encrypted with a known key.
Neutrinolabs Xrdp
Debian Debian Linux 7.0
Debian Debian Linux 8.0
6.9
CVSSv2
CVE-2010-5248
Untrusted search path vulnerability in UltraVNC 1.0.8.2 allows local users to gain privileges via a Trojan horse vnclang.dll file in the current working directory, as demonstrated by a directory that contains a .vnc file. NOTE: some of these details are obtained from third party ...
Ultravnc Ultravnc 1.0.8.2
7.5
CVSSv2
CVE-2019-8265
UltraVNC revision 1207 has multiple out-of-bounds access vulnerabilities connected with improper usage of SETPIXELS macro in VNC client code, which can potentially result in code execution. This attack appears to be exploitable via network connectivity. These vulnerabilities have...
Uvnc Ultravnc
7.5
CVSSv2
CVE-2019-8268
UltraVNC revision 1206 has multiple off-by-one vulnerabilities in VNC client code connected with improper usage of ClientConnection::ReadString function, which can potentially result code execution. This attack appears to be exploitable via network connectivity. These vulnerabili...
Uvnc Ultravnc
Siemens Sinumerik Access Mymachine\\/p2p
Siemens Sinumerik Pcu Base Win10 Software\\/ipc
Siemens Sinumerik Pcu Base Win7 Software\\/ipc
4.3
CVSSv2
CVE-2013-5136
Apple Remote Desktop prior to 3.7 does not properly use server authentication-type information during decisions about whether to present an unencrypted-connection warning message, which allows remote malicious users to obtain sensitive information in opportunistic circumstances b...
Apple Apple Remote Desktop 3.3.2
Apple Apple Remote Desktop 3.4
Apple Apple Remote Desktop 3.5
Apple Apple Remote Desktop 3.5.1
Apple Apple Remote Desktop 3.0.0
Apple Apple Remote Desktop 3.1
Apple Apple Remote Desktop 3.2
Apple Apple Remote Desktop 3.5.4
Apple Apple Remote Desktop 3.2.2
Apple Apple Remote Desktop 3.3.1
Apple Apple Remote Desktop 3.5.2
Apple Apple Remote Desktop 3.6
Apple Apple Remote Desktop
Apple Apple Remote Desktop 3.2.1
Apple Apple Remote Desktop 3.3
Apple Apple Remote Desktop 3.5.3
Apple Apple Remote Desktop 3.6.1
5
CVSSv2
CVE-2020-25708
A divide by zero issue was found to occur in libvncserver-0.9.12. A malicious client could use this flaw to send a specially crafted message that, when processed by the VNC server, would lead to a floating point exception, resulting in a denial of service.
Libvncserver Project Libvncserver 0.9.12
Redhat Enterprise Linux 7.0
Redhat Enterprise Linux 6.0
Redhat Enterprise Linux 8.0
Debian Debian Linux 10.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »