Vulnerabilities > Uvnc > High

DATE CVE VULNERABILITY TITLE RISK
2022-03-10 CVE-2022-24750 Improper Privilege Management vulnerability in Uvnc Ultravnc
UltraVNC is a free and open source remote pc access software.
local
low complexity
uvnc CWE-269
7.8
7.8
2019-03-08 CVE-2019-8280 Out-of-bounds Write vulnerability in Uvnc Ultravnc
UltraVNC revision 1203 has out-of-bounds access vulnerability in VNC client inside RAW decoder, which can potentially result code execution.
network
low complexity
uvnc CWE-787
7.5
7.5
2019-03-08 CVE-2019-8275 UltraVNC revision 1211 has multiple improper null termination vulnerabilities in VNC server code, which result in out-of-bound data being accessed by remote users.
network
low complexity
uvnc siemens
7.5
7.5
2019-03-08 CVE-2019-8274 Out-of-bounds Write vulnerability in multiple products
UltraVNC revision 1211 has a heap buffer overflow vulnerability in VNC server code inside file transfer offer handler, which can potentially in result code execution.
network
low complexity
uvnc siemens CWE-787
7.5
7.5
2019-03-08 CVE-2019-8273 Out-of-bounds Write vulnerability in multiple products
UltraVNC revision 1211 has a heap buffer overflow vulnerability in VNC server code inside file transfer request handler, which can potentially result in code execution.
network
low complexity
uvnc siemens CWE-787
7.5
7.5
2019-03-08 CVE-2019-8272 Off-by-one Error vulnerability in multiple products
UltraVNC revision 1211 has multiple off-by-one vulnerabilities in VNC server code, which can potentially result in code execution.
network
low complexity
uvnc siemens CWE-193
7.5
7.5
2019-03-08 CVE-2019-8271 Out-of-bounds Write vulnerability in multiple products
UltraVNC revision 1211 has a heap buffer overflow vulnerability in VNC server code inside file transfer handler, which can potentially result code execution.
network
low complexity
uvnc siemens CWE-787
7.5
7.5
2019-03-08 CVE-2019-8268 Off-by-one Error vulnerability in multiple products
UltraVNC revision 1206 has multiple off-by-one vulnerabilities in VNC client code connected with improper usage of ClientConnection::ReadString function, which can potentially result code execution.
network
low complexity
uvnc siemens CWE-193
7.5
7.5
2019-03-08 CVE-2019-8266 Out-of-bounds Read vulnerability in Uvnc Ultravnc
UltraVNC revision 1207 has multiple out-of-bounds access vulnerabilities connected with improper usage of ClientConnection::Copybuffer function in VNC client code, which can potentially result in code execution.
network
low complexity
uvnc CWE-125
7.5
7.5
2019-03-08 CVE-2019-8265 Out-of-bounds Write vulnerability in Uvnc Ultravnc
UltraVNC revision 1207 has multiple out-of-bounds access vulnerabilities connected with improper usage of SETPIXELS macro in VNC client code, which can potentially result in code execution.
network
low complexity
uvnc CWE-787
7.5
7.5