9.8 High
AI Score
Confidence
High
0.022 Low
EPSS
Percentile
89.6%
UltraVNC revision 1198 has a heap buffer overflow vulnerability in VNC client code which results code execution. This attack appears to be exploitable via network connectivity. This vulnerability has been fixed in revision 1199.
cert-portal.siemens.com/productcert/pdf/ssa-927095.pdf
ics-cert.kaspersky.com/advisories/klcert-advisories/2019/03/01/klcert-19-004-ultravnc-heap-based-buffer-overflow/
www.us-cert.gov/ics/advisories/icsa-20-161-06