Lucene search
Veracode Vulnerability DatabaseVERACODE:28160HistoryDec 06, 2020 - 3:18 a.m.
Privilege Escalation
2020-12-0603:18:05
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
11
0.013 Low
EPSS
Percentile
85.9%
x11vnc is vulnerable to privilege escalation. The vulnerability exists through scan.c in IPC_CREAT|0777 in shmget calls, which allows access by actors other than the current user.
| CPE | Name | Operator | Version |
|---|---|---|---|
| x11vnc:bullseye | eq | 0.9.16-4 | |
| x11vnc:sid | eq | 0.9.16-4 | |
| x11vnc:3.12 | eq | 0.9.16-r0 | |
| x11vnc:stretch | eq | 0.9.13-2+deb9u1 | |
| x11vnc:edge | eq | 0.9.16-r0 |
References
github.com/LibVNC/x11vnc/commit/69eeb9f7baa14ca03b16c9de821f9876def7a36a
lists.debian.org/debian-lts-announce/2020/12/msg00018.html
lists.fedoraproject.org/archives/list/[email protected]/message/H2FLWSVH32O6JXLRQBYDQLP7XRSTLUPQ/
lists.fedoraproject.org/archives/list/[email protected]/message/MHVXHZE3YIP4RTWGQ24IDBSW44XPRDOC/
lists.fedoraproject.org/archives/list/[email protected]/message/PZL6NQTNK5PT63D2JX5YVV5OLUL76S5C/
security-tracker.debian.org/tracker/CVE-2020-29074
www.debian.org/security/2020/dsa-4799
Related
fedora
fedora
[SECURITY] Fedora 32 Update: x11vnc-0.9.16-3.fc32
2021-03-10 00:26:09
[SECURITY] Fedora 33 Update: x11vnc-0.9.16-5.fc33
2021-03-10 00:42:48
[SECURITY] Fedora 34 Update: x11vnc-0.9.16-6.fc34
2021-03-19 20:24:14
ubuntucve
ubuntucve
CVE-2020-29074
2020-11-25 00:00:00
openvas
openvas
Debian: Security Advisory (DLA-2490-1)
2020-12-14 00:00:00
Debian: Security Advisory (DSA-4799-1)
2020-11-29 00:00:00
Fedora: Security Advisory for x11vnc (FEDORA-2021-069c0c3950)
2021-03-20 00:00:00
nessus
nessus
Fedora 33 : x11vnc (2021-93911302d6)
2021-03-10 00:00:00
Debian DSA-4799-1 : x11vnc - security update
2020-11-30 00:00:00
Fedora 32 : x11vnc (2021-c5b679877e)
2021-03-10 00:00:00
debian
debian
[SECURITY] [DSA 4799-1] x11vnc security update
2020-11-28 14:00:35
[SECURITY] [DLA 2490-1] x11vnc security update
2020-12-10 21:30:12
[SECURITY] [DSA 4799-1] x11vnc security update
2020-11-28 14:00:35
cvelist
cvelist
CVE-2020-29074
2020-11-25 22:06:36
mageia
mageia
Updated x11vnc package fixes a security vulnerability
2020-12-08 13:40:32
debiancve
debiancve
CVE-2020-29074
2020-11-25 23:15:11
osv
osv
CVE-2020-29074
2020-11-25 23:15:11
x11vnc - security update
2020-12-10 00:00:00
x11vnc - security update
2020-11-28 00:00:00
nvd
nvd
CVE-2020-29074
2020-11-25 23:15:11
CVE-2020-27785
2021-02-19 21:15:12
cve
cve
CVE-2020-29074
2020-11-25 23:15:11
CVE-2020-27785
2021-02-19 21:15:12
alpinelinux
alpinelinux
CVE-2020-29074
2020-11-25 23:15:11
prion
prion
Design/Logic Flaw
2020-11-25 23:15:00
Design/Logic Flaw
2021-02-19 21:15:00