Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
vnc vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2019-8275
UltraVNC revision 1211 has multiple improper null termination vulnerabilities in VNC server code, which result in out-of-bound data being accessed by remote users. This attack appears to be exploitable via network connectivity. These vulnerabilities have been fixed in revision 12...
Uvnc Ultravnc
Siemens Sinumerik Access Mymachine\\/p2p
Siemens Sinumerik Pcu Base Win10 Software\\/ipc
Siemens Sinumerik Pcu Base Win7 Software\\/ipc
7.5
CVSSv3
CVE-2019-8276
UltraVNC revision 1211 has a stack buffer overflow vulnerability in VNC server code inside file transfer request handler, which can result in Denial of Service (DoS). This attack appears to be exploitable via network connectivity. This vulnerability has been fixed in revision 121...
Uvnc Ultravnc
Siemens Sinumerik Access Mymachine\\/p2p
Siemens Sinumerik Pcu Base Win10 Software\\/ipc
Siemens Sinumerik Pcu Base Win7 Software\\/ipc
7.5
CVSSv3
CVE-2019-8270
UltraVNC revision 1210 has out-of-bounds read vulnerability in VNC client code inside Ultra decoder, which results in a denial of service (DoS) condition. This attack appear to be exploitable via network connectivity. This vulnerability has been fixed in revision 1211.
Uvnc Ultravnc
9.8
CVSSv3
CVE-2019-8274
UltraVNC revision 1211 has a heap buffer overflow vulnerability in VNC server code inside file transfer offer handler, which can potentially in result code execution. This attack appears to be exploitable via network connectivity. This vulnerability has been fixed in revision 121...
Uvnc Ultravnc
Siemens Sinumerik Access Mymachine\\/p2p
Siemens Sinumerik Pcu Base Win10 Software\\/ipc
Siemens Sinumerik Pcu Base Win7 Software\\/ipc
9.8
CVSSv3
CVE-2013-1430
An issue exists in xrdp prior to 0.9.1. When successfully logging in using RDP into an xrdp session, the file ~/.vnc/sesman_${username}_passwd is created. Its content is the equivalent of the user's cleartext password, DES encrypted with a known key.
Neutrinolabs Xrdp
Debian Debian Linux 7.0
Debian Debian Linux 8.0
7.5
CVSSv3
CVE-2018-20023
LibVNC prior to 8b06f835e259652b0ff026898014fc7297ade858 contains CWE-665: Improper Initialization vulnerability in VNC Repeater client code that allows malicious user to read stack memory and can be abuse for information disclosure. Combined with another vulnerability, it can be...
Libvnc Project Libvncserver
Debian Debian Linux 9.0
Debian Debian Linux 8.0
Canonical Ubuntu Linux 18.10
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 16.04
NA
CVE-2010-5248
Untrusted search path vulnerability in UltraVNC 1.0.8.2 allows local users to gain privileges via a Trojan horse vnclang.dll file in the current working directory, as demonstrated by a directory that contains a .vnc file. NOTE: some of these details are obtained from third party ...
Ultravnc Ultravnc 1.0.8.2
9.8
CVSSv3
CVE-2019-8265
UltraVNC revision 1207 has multiple out-of-bounds access vulnerabilities connected with improper usage of SETPIXELS macro in VNC client code, which can potentially result in code execution. This attack appears to be exploitable via network connectivity. These vulnerabilities have...
Uvnc Ultravnc
NA
CVE-2013-5136
Apple Remote Desktop prior to 3.7 does not properly use server authentication-type information during decisions about whether to present an unencrypted-connection warning message, which allows remote malicious users to obtain sensitive information in opportunistic circumstances b...
Apple Apple Remote Desktop 3.3.2
Apple Apple Remote Desktop 3.4
Apple Apple Remote Desktop 3.5
Apple Apple Remote Desktop 3.5.1
Apple Apple Remote Desktop 3.0.0
Apple Apple Remote Desktop 3.1
Apple Apple Remote Desktop 3.2
Apple Apple Remote Desktop 3.5.4
Apple Apple Remote Desktop 3.2.2
Apple Apple Remote Desktop 3.3.1
Apple Apple Remote Desktop 3.5.2
Apple Apple Remote Desktop 3.6
Apple Apple Remote Desktop
Apple Apple Remote Desktop 3.2.1
Apple Apple Remote Desktop 3.3
Apple Apple Remote Desktop 3.5.3
Apple Apple Remote Desktop 3.6.1
9.8
CVSSv3
CVE-2019-8268
UltraVNC revision 1206 has multiple off-by-one vulnerabilities in VNC client code connected with improper usage of ClientConnection::ReadString function, which can potentially result code execution. This attack appears to be exploitable via network connectivity. These vulnerabili...
Uvnc Ultravnc
Siemens Sinumerik Access Mymachine\\/p2p
Siemens Sinumerik Pcu Base Win10 Software\\/ipc
Siemens Sinumerik Pcu Base Win7 Software\\/ipc
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »