Vulnerabilities > Tightvnc
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-04-12 | CVE-2023-27830 | Improper Privilege Management vulnerability in Tightvnc TightVNC before v2.8.75 allows attackers to escalate privileges on the host operating system via replacing legitimate files with crafted files when executing a file transfer. | 9.0 |
| 2021-11-23 | CVE-2021-42785 | Classic Buffer Overflow vulnerability in Tightvnc 1.3.10/1.3.9/2.8.59 Buffer Overflow vulnerability in tvnviewer.exe of TightVNC Viewer allows a remote attacker to execute arbitrary instructions via a crafted FramebufferUpdate packet from a VNC server. | 9.8 |
| 2019-10-29 | CVE-2019-8287 | Classic Buffer Overflow vulnerability in Tightvnc 1.3.10 TightVNC code version 1.3.10 contains global buffer overflow in HandleCoRREBBP macro function, which can potentially result code execution. | 9.8 |
| 2019-10-29 | CVE-2019-15680 | NULL Pointer Dereference vulnerability in Tightvnc 1.3.10 TightVNC code version 1.3.10 contains null pointer dereference in HandleZlibBPP function, which results Denial of System (DoS). | 7.5 |
| 2019-10-29 | CVE-2019-15679 | Out-of-bounds Write vulnerability in Tightvnc 1.3.10 TightVNC code version 1.3.10 contains heap buffer overflow in InitialiseRFBConnection function, which can potentially result code execution. | 9.8 |
| 2019-10-29 | CVE-2019-15678 | Out-of-bounds Write vulnerability in Tightvnc 1.3.10 TightVNC code version 1.3.10 contains heap buffer overflow in rfbServerCutText handler, which can potentially result code execution.. | 9.8 |