Lucene search
K

12 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2020-14404

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in LibVNCServer before 0.9.13. libvncserver/rre.c allows out-of-bounds access via encodings. CVE-2020-14404 Note that Nessus relies on t...

5.5CVSS6.8AI score0.0159EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2024/06/03 12:0 a.m.23 views

RHEL 7 : vino (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - libvncserver: information disclosure and ASLR bypass CVE-2019-15681 - libvncserver: libvncserver/rre.c...

7.5CVSS8.1AI score0.0339EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2020/11/04 12:0 a.m.24 views

Huawei EulerOS: Security Advisory for libvncserver (EulerOS-SA-2020-2362)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.8AI score0.03589EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2020/10/08 12:0 a.m.31 views

Ubuntu: Security Advisory (USN-4573-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9AI score0.07563EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2020/10/08 12:0 a.m.39 views

Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS : Vino vulnerabilities (USN-4573-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-4573-1 advisory. Nicolas Ruff discovered that Vino incorrectly handled large ClientCutText messages. A remote attacker could use this issue to cau...

9.8CVSS7.6AI score0.07563EPSS
Exploits1References8
Ubuntu
Ubuntu
added 2020/10/07 12:45 p.m.71 views

USN-4573-1: Vino vulnerabilities

Nicolas Ruff discovered that Vino incorrectly handled large ClientCutText messages. A remote attacker could use this issue to cause the server to crash, resulting in a denial of service. CVE-2014-6053 It was discovered that Vino incorrectly handled certain packet lengths. A remote attacker could...

9.8CVSS7.7AI score0.07563EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2020/07/27 12:0 a.m.40 views

Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS : LibVNCServer vulnerabilities (USN-4434-1)

The remote Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4434-1 advisory. Ramin Farajpour Cami discovered that LibVNCServer incorrectly handled certain malformed unix socket names. A remote attacker coul...

7.5CVSS7.3AI score0.03589EPSS
Exploits0References13
OpenVAS
OpenVAS
added 2020/07/24 12:0 a.m.21 views

Ubuntu: Security Advisory (USN-4434-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.8AI score0.03589EPSS
Exploits0References2
Mageia
Mageia
added 2020/07/10 8:1 a.m.49 views

Updated vino packages fix security vulnerability

The updated package fixes security vulnerabilities: An issue was discovered in LibVNCServer before 0.9.13. libvncserver/rfbregion.c has a NULL pointer dereference. CVE-2020-14397 Byte-aligned data is accessed through uint16t pointers in libvncserver/translate.c. CVE-2020-14400 libvncserver/corre....

7.5CVSS5.8AI score0.0339EPSS
Exploits0References2
Mageia
Mageia
added 2020/07/05 7:48 p.m.41 views

Updated libvncserver packages fix security vulnerability

Updated libvncserver packages fix security vulnerabilities: libvncclient/sockets.c in LibVNCServer had a buffer overflow via a long socket filename CVE-2019-20839. libvncserver/rfbregion.c had a NULL pointer dereference CVE-2020-14397. Byte-aligned data was accessed through uint32t pointers in...

7.5CVSS6.1AI score0.03589EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2020/07/01 12:0 a.m.24 views

Debian: Security Advisory (DLA-2264-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.1AI score0.03589EPSS
Exploits0References3
CVE
CVE
added 2020/06/17 3:11 p.m.134 views

CVE-2020-14404

CVE-2020-14404 affects LibVNCServer before version 0.9.13, with the root cause being out-of-bounds access in the rre.c encodings path. Affected component: libvncserver (server-side handling of Encodings). Impact as stated: potential information disclosure or denial of service with low confidentia...

5.5CVSS6.1AI score0.0159EPSS
Exploits0References7Affected Software1
Rows per page
Query Builder