Known Vulnerabilities for Libvncserver by Libvncserver Project
Listed below are 10 of the newest known vulnerabilities associated with "Libvncserver" by "Libvncserver Project".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2020-14405 | An issue was discovered in LibVNCServer before 0.9.13. libvncclient/rfbproto.c does not limit TextChat size. | 6.5 - MEDIUM | 2020-06-17 | 2022-03-09 |
| CVE-2020-14404 | An issue was discovered in LibVNCServer before 0.9.13. libvncserver/rre.c allows out-of-bounds access via encodings. | 5.4 - MEDIUM | 2020-06-17 | 2022-03-09 |
| CVE-2020-14403 | An issue was discovered in LibVNCServer before 0.9.13. libvncserver/hextile.c allows out-of-bounds access via encodings. | 5.4 - MEDIUM | 2020-06-17 | 2022-03-09 |
| CVE-2020-14402 | An issue was discovered in LibVNCServer before 0.9.13. libvncserver/corre.c allows out-of-bounds access via encodings. | 5.4 - MEDIUM | 2020-06-17 | 2022-03-09 |
| CVE-2020-14401 | An issue was discovered in LibVNCServer before 0.9.13. libvncserver/scale.c has a pixel_value integer overflow. | 6.5 - MEDIUM | 2020-06-17 | 2022-03-09 |
| CVE-2020-14400 | ** DISPUTED ** An issue was discovered in LibVNCServer before 0.9.13. Byte-aligned data is accessed through uint16_t pointers... | 7.5 - HIGH | 2020-06-17 | 2023-11-07 |
| CVE-2020-14399 | ** DISPUTED ** An issue was discovered in LibVNCServer before 0.9.13. Byte-aligned data is accessed through uint32_t pointers... | 7.5 - HIGH | 2020-06-17 | 2023-11-07 |
| CVE-2020-14398 | An issue was discovered in LibVNCServer before 0.9.13. An improperly closed TCP connection causes an infinite loop in libvncc... | 7.5 - HIGH | 2020-06-17 | 2022-03-10 |
| CVE-2020-14397 | An issue was discovered in LibVNCServer before 0.9.13. libvncserver/rfbregion.c has a NULL pointer dereference. | 7.5 - HIGH | 2020-06-17 | 2022-03-10 |
| CVE-2020-14396 | An issue was discovered in LibVNCServer before 0.9.13. libvncclient/tls_openssl.c has a NULL pointer dereference. | 7.5 - HIGH | 2020-06-17 | 2022-03-10 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Libvncserver Project | Libvncserver | 0.9.9 | All | All | All |
| Application | Libvncserver Project | Libvncserver | 0.9.8.2 | All | All | All |
| Application | Libvncserver Project | Libvncserver | 0.9.8.1 | All | All | All |
| Application | Libvncserver Project | Libvncserver | 0.9.8 | All | All | All |
| Application | Libvncserver Project | Libvncserver | 0.9.7 | All | All | All |
| Application | Libvncserver Project | Libvncserver | 0.9.6 | All | All | All |
| Application | Libvncserver Project | Libvncserver | 0.9.5 | All | All | All |
| Application | Libvncserver Project | Libvncserver | 0.9.4 | All | All | All |
| Application | Libvncserver Project | Libvncserver | 0.9.13 | All | All | All |
| Application | Libvncserver Project | Libvncserver | 0.9.12 | All | All | All |
| Application | Libvncserver Project | Libvncserver | 0.9.11 | All | All | All |
| Application | Libvncserver Project | Libvncserver | 0.9.10 | All | All | All |