Known Vulnerabilities for Libvncserver by Libvncserver Project
Listed below are 10 of the newest known vulnerabilities associated with "Libvncserver" by "Libvncserver Project".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-32854 json | LibVNCServer versions 0.9.15 and prior (fixed in commit dc78dee) contain null pointer dereference vulnerabilities in the HTT... | Not Provided | 2026-03-24 | 2026-07-14 |
| CVE-2026-32853 json | LibVNCServer versions 0.9.15 and prior (fixed in commit 009008e) contain a heap out-of-bounds read vulnerability in the Ultr... | Not Provided | 2026-03-24 | 2026-07-14 |
| CVE-2020-29260 json | libvncclient v0.9.13 was discovered to contain a memory leak via the function rfbClientCleanup(). | 7.5 - HIGH | 2022-09-02 | 2022-10-05 |
| CVE-2020-25708 json | A divide by zero issue was found to occur in libvncserver-0.9.12. A malicious client could use this flaw to send a specially ... | 7.5 - HIGH | 2020-11-27 | 2022-10-29 |
| CVE-2020-14405 json | An issue was discovered in LibVNCServer before 0.9.13. libvncclient/rfbproto.c does not limit TextChat size. | 6.5 - MEDIUM | 2020-06-17 | 2022-03-09 |
| CVE-2020-14404 json | An issue was discovered in LibVNCServer before 0.9.13. libvncserver/rre.c allows out-of-bounds access via encodings. | 5.4 - MEDIUM | 2020-06-17 | 2022-03-09 |
| CVE-2020-14403 json | An issue was discovered in LibVNCServer before 0.9.13. libvncserver/hextile.c allows out-of-bounds access via encodings. | 5.4 - MEDIUM | 2020-06-17 | 2022-03-09 |
| CVE-2020-14402 json | An issue was discovered in LibVNCServer before 0.9.13. libvncserver/corre.c allows out-of-bounds access via encodings. | 5.4 - MEDIUM | 2020-06-17 | 2022-03-09 |
| CVE-2020-14401 json | An issue was discovered in LibVNCServer before 0.9.13. libvncserver/scale.c has a pixel_value integer overflow. | 6.5 - MEDIUM | 2020-06-17 | 2022-03-09 |
| CVE-2020-14400 json | ** DISPUTED ** An issue was discovered in LibVNCServer before 0.9.13. Byte-aligned data is accessed through uint16_t pointers... | 7.5 - HIGH | 2020-06-17 | 2023-11-07 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Libvncserver Project | Libvncserver | 0.9.9 | |||
| Application | Libvncserver Project | Libvncserver | 0.9.8.2 | |||
| Application | Libvncserver Project | Libvncserver | 0.9.8.1 | |||
| Application | Libvncserver Project | Libvncserver | 0.9.8 | |||
| Application | Libvncserver Project | Libvncserver | 0.9.7 | |||
| Application | Libvncserver Project | Libvncserver | 0.9.6 | |||
| Application | Libvncserver Project | Libvncserver | 0.9.5 | |||
| Application | Libvncserver Project | Libvncserver | 0.9.4 | |||
| Application | Libvncserver Project | Libvncserver | 0.9.13 | |||
| Application | Libvncserver Project | Libvncserver | 0.9.12 | |||
| Application | Libvncserver Project | Libvncserver | 0.9.11 | |||
| Application | Libvncserver Project | Libvncserver | 0.9.10 |