CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

22 matches found

Tenable Nessus•added 2021/02/01 12:0 a.m.•28 views

CentOS 8 : tigervnc (CESA-2020:1497)

The remote CentOS Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the CESA-2020:1497 advisory. - tigervnc: Stack use-after-return due to incorrect usage of stack memory in ZRLEDecoder CVE-2019-15691 - tigervnc: Heap buffer overflow triggered from...

7.2CVSS7.3AI score0.08956EPSS

Exploits5References6

Tenable Nessus•added 2020/10/21 12:0 a.m.•24 views

Scientific Linux Security Update : tigervnc on SL7.x x86_64 (20201001)

Security Fixes : - tigervnc: Stack use-after-return due to incorrect usage of stack memory in ZRLEDecoder CVE-2019-15691 - tigervnc: Heap buffer overflow triggered from CopyRectDecoder due to incorrect value checks CVE-2019-15692 - tigervnc: Heap buffer overflow in TightDecoder::FilterGradient...

7.2CVSS7.2AI score0.08956EPSS

Exploits5References6

Tenable Nessus•added 2020/10/20 12:0 a.m.•39 views

CentOS 7 : tigervnc (RHSA-2020:3875)

The remote CentOS Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:3875 advisory. - TigerVNC version prior to 1.10.1 is vulnerable to stack use-after-return, which occurs due to incorrect usage of stack memory in ZRLEDecoder. If...

7.2CVSS7.8AI score0.08956EPSS

Exploits5References6

Tenable Nessus•added 2020/09/29 12:0 a.m.•29 views

RHEL 7 : tigervnc (RHSA-2020:3875)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:3875 advisory. Virtual Network Computing VNC is a remote display system which allows users to view a computing desktop environment not only on the machine...

7.2CVSS7.4AI score0.08956EPSS

Exploits5References16

Tenable Nessus•added 2020/08/28 12:0 a.m.•37 views

EulerOS 2.0 SP8 : tigervnc (EulerOS-SA-2020-1885)

According to the versions of the tigervnc packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - TigerVNC version prior to 1.10.1 is vulnerable to stack use-after-return, which occurs due to incorrect usage of stack memory in ZRLEDecoder. ...

7.2CVSS7.7AI score0.08956EPSS

Exploits5References6

RedHat Linux•added 2020/04/16 9:9 p.m.•2 views

tigervnc: Stack buffer overflow in CMsgReader::readSetCursor

TigerVNC version prior to 1.10.1 is vulnerable to stack buffer overflow, which could be triggered from CMsgReader::readSetCursor. This vulnerability occurs due to insufficient sanitization of PixelFormat. Since remote attacker can choose offset from start of the buffer to start writing his values...

7.2CVSS6.2AI score0.03257EPSS

Exploits1References4

OpenVAS•added 2020/01/27 12:0 a.m.•23 views

openSUSE: Security Advisory for tigervnc (openSUSE-SU-2020:0087_1)

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7.2CVSS7.4AI score0.08956EPSS

Exploits5References2

Tenable Nessus•added 2020/01/22 12:0 a.m.•29 views

openSUSE Security Update : tigervnc (openSUSE-2020-87)

This update for tigervnc fixes the following issues : - CVE-2019-15691: Fixed a use-after-return due to incorrect usage of stack memory in ZRLEDecoder bsc1159856. - CVE-2019-15692: Fixed a heap-based buffer overflow in CopyRectDecode bsc1160250. - CVE-2019-15693: Fixed a heap-based buffer overflo...

7.2CVSS7.2AI score0.08956EPSS

Exploits5References10

Tenable Nessus•added 2020/01/17 12:0 a.m.•38 views

SUSE SLED15 / SLES15 Security Update : tigervnc (SUSE-SU-2020:0112-1)

This update for tigervnc fixes the following issues : CVE-2019-15691: Fixed a use-after-return due to incorrect usage of stack memory in ZRLEDecoder bsc1159856. CVE-2019-15692: Fixed a heap-based buffer overflow in CopyRectDecode bsc1160250. CVE-2019-15693: Fixed a heap-based buffer overflow in...

7.2CVSS7.3AI score0.08956EPSS

Exploits5References16

Tenable Nessus•added 2020/01/17 12:0 a.m.•36 views

SUSE SLED15 / SLES15 Security Update : tigervnc (SUSE-SU-2020:0113-1)

7.2CVSS7.3AI score0.08956EPSS

Exploits5References16

RedhatCVE•added 2020/01/13 6:39 a.m.•25 views

CVE-2019-15695

7.2CVSS5.5AI score0.03257EPSS

Exploits1References3

OSV•added 2019/12/26 4:15 p.m.•1 views

DEBIAN-CVE-2019-15695

7.2CVSS7.7AI score0.03257EPSS

Exploits1References1

OSV•added 2019/12/26 4:15 p.m.•13 views

CVE-2019-15695

7.2CVSS7.5AI score

Exploits0References4

UbuntuCve•added 2019/12/26 4:15 p.m.•19 views

CVE-2019-15695

7.2CVSS7.2AI score0.03257EPSS

Exploits1References6

Prion•added 2019/12/26 4:15 p.m.•16 views

Stack overflow

6.5CVSS7.1AI score0.03257EPSS

Exploits1References4Affected Software2

Debian CVE•added 2019/12/26 3:24 p.m.•14 views

CVE-2019-15695

7.2CVSS7.3AI score0.03257EPSS

Exploits1

Tenable Nessus•added 2009/03/10 12:0 a.m.•17 views

GLSA-200903-17 : Real VNC: User-assisted execution of arbitrary code

The remote host is affected by the vulnerability described in GLSA-200903-17 Real VNC: User-assisted execution of arbitrary code An unspecified vulnerability has been discovered int the CMsgReader::readRect function in the VNC Viewer component, related to the encoding type of RFB protocol data...

10CVSS6.1AI score0.0582EPSS

Exploits0References2

RedHat Linux•added 2009/02/11 5:52 p.m.•1 views

vnc: vncviewer insufficient encoding value validation in CMsgReader::readRect

The CMsgReader::readRect function in the VNC Viewer component in RealVNC VNC Free Edition 4.0 through 4.1.2, Enterprise Edition E4.0 through E4.4.2, and Personal Edition P4.0 through P4.4.2 allows remote VNC servers to execute arbitrary code via crafted RFB protocol data, related to "encoding typ...

10CVSS6.2AI score0.0582EPSS

Exploits0References4