CVE-2019-20839

CVE-2019-20839 affects LibVNCServer: a buffer overflow in libvncclient/sockets.c can be triggered by a long socket filename, impacting versions prior to 0.9.13. The issue may enable remote code execution or crashes as implied by the buffer overflow vulnerability, with reports across distributions...

CVE-2019-15681

CVE-2019-15681 is a memory-leak vulnerability (CWE-655) in LibVNCServer’s VNC server component. The issue, introduced in LibVNC commit prior to d01e1bb4246..., could allow an attacker to read stack memory and cause information disclosure; when combined with another vulnerability this memory leaka...

CVE-2020-14397

CVE-2020-14397 affects LibVNCServer prior to 0.9.13. The issue is a NULL pointer dereference in libvncserver/rfbregion.c, which can cause a crash and contribute to a denial of service. Public references in multiple advisories (e.g., MiracleLinux, Alibaba Cloud Linux, Red Hat and Rocky Linux conte...

CVE-2018-21247

CVE-2018-21247 : The vulnerability affects LibVNCServer prior to 0.9.13, with an information leak of uninitialized memory in the libvncclient/rfbproto.c ConnectToRFBRepeater function. The connected Nessus/Mirai-style advisories enumerate LibVNCServer in affected packages (e.g., libvncserver befor...

CVE-2019-20840

CVE-2019-20840 concerns LibVNCServer prior to 0.9.13. The issue in libvncserver/ws_decode.c causes a crash from unaligned accesses in hybiReadAndDecode, with multiple advisories and patches documenting the fix in LibVNCServer-0.9.13+ (and related vendor advisories). The practical impact is crash/...

CVE-2020-14402

CVE-2020-14402 affects the LibVNCServer project, specifically the libvncserver/corre.c code path, where an out-of-bounds access is possible via encodings. The public description, and multiple connected advisories/plugins, consistently reference this issue as present in LibVNCServer before version...

CVE-2019-20788

CVE-2019-20788 affects LibVNCServer (LibVNCClient) in libvncclient/cursor.c up to version 0.9.12, where HandleCursorShape can overflow an integer value and trigger a heap-based buffer overflow when a cursor shape with a large height or width is supplied. This corresponds to an impact on code hand...

CVE-2018-20019

CVE-2018-20019 refers to LibVNC vulnerabilities where multiple heap out-of-bounds writes in the VNC client code can lead to remote code execution. Connected documents confirm an incomplete fix in the affected LibVNC components (e.g., “Incomplete fix for CVE-2018-20019”) and list LibVNCServer/LibV...

CVE-2018-15127

LibVNCServer contains a heap out-of-bounds write vulnerability in the server code of the File Transfer extension, enabling remote code execution. Multiple connected advisories confirm CVE-2018-15127 and note affected versions (LibVNCServer prior to the patched release, e.g., 0.9.12 in some adviso...

CVE-2020-14405

CVE-2020-14405 is reported in LibVNCServer prior to 0.9.13 for libvncclient/rfbproto.c not limiting TextChat size. The connected Nessus advisories confirm the presence of this vulnerability across several distributions and list the CVE as affecting libvncserver, but do not provide exploit details...

CVE-2020-14398

CVE-2020-14398 affects LibVNCServer before 0.9.13. An improperly closed TCP connection can cause an infinite loop in libvncclient/sockets.c. Several advisories (EulerOS, SUSE, Red Hat-related Nessus plugins) reference updates to LibVNCServer 0.9.13+ as the fix. Affected products include various L...

CVE-2018-20021

LibVNC before commit c3115350eb8bb635d0fdb4dbbb0d0541f38ed19c0 contains a CWE-835: Infinite loop vulnerability in VNC client code (CVE-2018-20021). This flaw can let an attacker cause high resource consumption (CPU/RAM) via crafted VNC traffic. The issue is discussed across multiple Linux distrib...

CVE-2018-20749

LibVNC/libvncserver (vncserver) contains a heap out-of-bounds write in libvncserver/rfbserver.c. CVE-2018-20749 and CVE-2018-20750 reference heap-out-of-bounds writes with incomplete fixes related to CVE-2018-15127; advisories note that the fix for the earlier CVE was incomplete and Debian/ALAS e...

CVE-2018-20748

CVE-2018-20748 affects LibVNCServer/LibVNCClient prior to version 0.9.12, with multiple heap out-of-bounds writes in libvncclient/rfbproto.c. The vulnerability is described among a set where the fix for CVE-2018-20019 was incomplete. Several Nessus/RHEL advisories indicate unpatched status or unp...

CVE-2018-20024

CVE-2018-20024 is a null pointer dereference in LibVNCServer/LibVNCClient before commit 4a21bbd097ef7c44bb000c3bd0907f96a10e4ce7, leading to denial of service via the VNC client code. The connected Nessus/Ubuntu/Mageia entries cite this CVE among LibVNC vulnerabilities, but no explicit public pat...

CVE-2018-20022

CVE-2018-20022 affects LibVNC before 2f5b2ad1c6c99b1ac6482c95844a84d66bb52838 in the VNC client code. The root cause is an improper initialization weakness (CWE-665) that allows an attacker to read stack memory, enabling information disclosure. When combined with another vulnerability, this can b...

CVE-2018-20750

CVE-2018-20750 : LibVNC up to 0.9.12 contains a heap out-of-bounds write vulnerability in libvncserver/rfbserver.c. The description notes that the fix for CVE-2018-15127 was incomplete, indicating an insufficiently addressed heap-write issue in the server component. Multiple advisories and lists ...

CVE-2018-15126

CVE-2018-15126 relates to LibVNCServer: heap use-after-free in the server code of the File Transfer extension, which can lead to remote code execution. The root cause is a heap-use-after-free in the file transfer path, enabling an attacker with network access to trigger code execution on a vulner...

CVE-2018-20020

CVE-2018-20020 refers to a heap out-of-bounds write in LibVNCServer/LibVNCClient within VNC client code. Public sources indicate the issue occurs in LibVNC before the commit 7b1ef0ffc4815cab9a96c7278394152bdc89dc4d, which can lead to remote code execution. The CVE is listed in multiple vendor adv...

CVE-2018-20023

CVE-2018-20023 affects LibVNCServer/LibVNCClient: CWE-665 Improper Initialization in the VNC Repeater client code can allow an attacker to read stack memory and disclose information. The issue is documented across multiple advisories (Debian/Ubuntu, Gentoo, Mageia, Red Hat) and is part of a broad...

CVE-2018-6307

CVE-2018-6307 affects LibVNC/LibVNCServer. It is a heap use-after-free in the server code of the file transfer extension, which can lead to remote code execution. Connected advisories confirm the vulnerability across LibVNCServer deployments and note that fixes were applied in downstream advisori...

CVE-2020-14403

Vulnerability CVE-2020-14403 affects LibVNCServer prior to 0.9.13. The issue is in libvncserver/hextile.c and allows out-of-bounds access via encodings. No exploitation details are provided in the sources beyond this description. Mitigation is to upgrade LibVNCServer to 0.9.13 or later (or apply ...

CVE-2020-14404

CVE-2020-14404 affects LibVNCServer before version 0.9.13, with the root cause being out-of-bounds access in the rre.c encodings path. Affected component: libvncserver (server-side handling of Encodings). Impact as stated: potential information disclosure or denial of service with low confidentia...

CVE-2020-14396

LibVNCServer before 0.9.13 contains a NULL pointer dereference in libvncclient/tls_openssl.c (CVE-2020-14396). Affected: LibVNCServer library; issue documented across multiple sources (NVD OSV/OSV-DEBIAN/CNVD/Ubuntu USN). Impact notes in public advisories describe potential crash or instability; ...