Known Vulnerabilities for products from Tightvnc

Listed below are 10 of the newest known vulnerabilities associated with the vendor "Tightvnc".

These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.

Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.

Known Vulnerabilities

CVE Shortened Description Severity Publish Date Last Modified
CVE-2021-42785 ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... 9.8 - CRITICAL 2021-11-23 2021-11-29
CVE-2019-15680 TightVNC code version 1.3.10 contains null pointer dereference in HandleZlibBPP function, which results Denial of System (DoS... 7.5 - HIGH 2019-10-29 2020-12-09
CVE-2019-15679 TightVNC code version 1.3.10 contains heap buffer overflow in InitialiseRFBConnection function, which can potentially result ... 9.8 - CRITICAL 2019-10-29 2020-12-09
CVE-2019-15678 TightVNC code version 1.3.10 contains heap buffer overflow in rfbServerCutText handler, which can potentially result code exe... 9.8 - CRITICAL 2019-10-29 2020-12-09
CVE-2019-8287 TightVNC code version 1.3.10 contains global buffer overflow in HandleCoRREBBP macro function, which can potentially result c... 9.8 - CRITICAL 2019-10-29 2020-12-09
CVE-2009-0388 Multiple integer signedness errors in (1) UltraVNC 1.0.2 and 1.0.5 and (2) TightVnc 1.3.9 allow remote VNC servers to cause a... 10 - HIGH 2009-02-04 2018-10-11
CVE-2002-1848 TightVNC before 1.2.4 running on Windows stores unencrypted passwords in the password text control of the WinVNC Properties d... 2.1 - LOW 2002-12-31 2008-09-05
CVE-2002-1511 The vncserver wrapper for vnc before 3.3.3r2-21 uses the rand() function instead of srand(), which causes vncserver to genera... 5 - MEDIUM 2003-03-03 2008-09-10
CVE-2002-1336 TightVNC before 1.2.6 generates the same challenge string for multiple connections, which allows remote attackers to bypass V... 7.5 - HIGH 2002-12-11 2017-10-10
CVE-2002-0971 Vulnerability in VNC, TightVNC, and TridiaVNC allows local users to execute arbitrary code as LocalSystem by using the Win32 ... 4.6 - MEDIUM 2002-09-24 2016-10-18

Known software with vulnerabilities from Tightvnc

Type Vendor Product Version

Popular searches for "Tightvnc"


In computing, TightVNC is a free and open-source remote desktop software server and client application for Linux and Windows. A server for macOS is available under a commercial source code license only, without SDK or binary version provided. Constantin Kaplinsky developed TightVNC, using and extending the RFB protocol of Virtual Network Computing to allow end-users to control another computer's screen remotely.

TightVNC: VNC-Compatible Free Remote Control / Remote Desktop Software

J FTightVNC: VNC-Compatible Free Remote Control / Remote Desktop Software TightVNC > < : - VNC-Compatible Remote Control / Remote Desktop Software

TightVNC Remote desktop software Virtual Network Computing Free software Software Software development kit Computer Remote computer Microsoft Windows HTTP cookie RFB protocol File viewer Java (programming language) Client (computing) MacOS Computer keyboard Computer mouse Source code Remote control Cross-platform software

© 2022 Twitter Nitter Twitter Viewer |

Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.

CVE, CWE, and OVAL are registred trademarks of The MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. This site includes MITRE data granted under the following license. and Source URL Uptime Status