Vulnerabilities > Siemens > Sinumerik PCU Base Win7 Software IPC > Critical

DATE CVE VULNERABILITY TITLE RISK
2019-03-08 CVE-2019-8268 Off-by-one Error vulnerability in multiple products
UltraVNC revision 1206 has multiple off-by-one vulnerabilities in VNC client code connected with improper usage of ClientConnection::ReadString function, which can potentially result code execution.
network
low complexity
uvnc siemens CWE-193
critical
 9.8
9.8
2019-03-08 CVE-2019-8271 Out-of-bounds Write vulnerability in multiple products
UltraVNC revision 1211 has a heap buffer overflow vulnerability in VNC server code inside file transfer handler, which can potentially result code execution.
network
low complexity
uvnc siemens CWE-787
critical
 9.8
9.8
2019-03-08 CVE-2019-8272 Off-by-one Error vulnerability in multiple products
UltraVNC revision 1211 has multiple off-by-one vulnerabilities in VNC server code, which can potentially result in code execution.
network
low complexity
uvnc siemens CWE-193
critical
 9.8
9.8
2019-03-08 CVE-2019-8273 Out-of-bounds Write vulnerability in multiple products
UltraVNC revision 1211 has a heap buffer overflow vulnerability in VNC server code inside file transfer request handler, which can potentially result in code execution.
network
low complexity
uvnc siemens CWE-787
critical
 9.8
9.8
2019-03-08 CVE-2019-8274 Out-of-bounds Write vulnerability in multiple products
UltraVNC revision 1211 has a heap buffer overflow vulnerability in VNC server code inside file transfer offer handler, which can potentially in result code execution.
network
low complexity
uvnc siemens CWE-787
critical
 9.8
9.8
2019-03-08 CVE-2019-8275 UltraVNC revision 1211 has multiple improper null termination vulnerabilities in VNC server code, which result in out-of-bound data being accessed by remote users.
network
low complexity
uvnc siemens
critical
 9.8
9.8
2019-03-05 CVE-2019-8258 Out-of-bounds Write vulnerability in multiple products
UltraVNC revision 1198 has a heap buffer overflow vulnerability in VNC client code which results code execution.
network
low complexity
uvnc siemens CWE-787
critical
 9.8
9.8
2019-03-05 CVE-2019-8262 Out-of-bounds Write vulnerability in multiple products
UltraVNC revision 1203 has multiple heap buffer overflow vulnerabilities in VNC client code inside Ultra decoder, which results in code execution.
network
low complexity
uvnc siemens CWE-787
critical
 9.8
9.8