6.9.0

CVSS 7.8 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

local

low complexity

realvnc

NVD

Published: 2022-06-10

Updated: 2024-11-21

Summary

RealVNC VNC Server 6.9.0 through 5.1.0 for Windows allows local privilege escalation because an installer repair operation executes %TEMP% files as SYSTEM.

Vulnerable Configurations

Part	Description	Count
Application	Realvnc Realvnc VNC Server 5.1.0 Realvnc VNC Server 6.8.0 Realvnc VNC Server 6.9.0	3
OS	Microsoft Microsoft Windows -	1

References

https://help.realvnc.com/hc/en-us/articles/360002478311-Are-there-any-known-security-vulnerabilities-#cve-2008-4770-moderate-%E2%80%94-only-affects-vnc-viewer--0-1
https://help.realvnc.com/hc/en-us/articles/360002478311-Are-there-any-known-security-vulnerabilities-#cve-2008-4770-moderate-%E2%80%94-only-affects-vnc-viewer--0-1
https://realvnc.com
https://realvnc.com