CVE-2019-15681

high
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

LibVNC commit before d01e1bb4246323ba6fcee3b82ef1faa9b1dac82a contains a memory leak (CWE-655) in VNC server code, which allow an attacker to read stack memory and can be abused for information disclosure. Combined with another vulnerability, it can be used to leak stack memory and bypass ASLR. This attack appear to be exploitable via network connectivity. These vulnerabilities have been fixed in commit d01e1bb4246323ba6fcee3b82ef1faa9b1dac82a.

References

https://github.com/LibVNC/libvncserver/commit/d01e1bb4246323ba6fcee3b82ef1faa9b1dac82a

https://lists.debian.org/debian-lts-announce/2019/10/msg00039.html

https://lists.debian.org/debian-lts-announce/2019/10/msg00042.html

https://lists.debian.org/debian-lts-announce/2019/11/msg00032.html

https://lists.debian.org/debian-lts-announce/2019/12/msg00028.html

http://lists.opensuse.org/opensuse-security-announce/2020-05/msg00027.html

https://usn.ubuntu.com/4407-1/

http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00073.html

https://usn.ubuntu.com/4547-1/

https://usn.ubuntu.com/4573-1/

https://usn.ubuntu.com/4587-1/

Details

Source: MITRE

Published: 2019-10-29

Updated: 2021-07-15

Type: CWE-665

Risk Information

CVSS v2

Base Score: 5

Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N

Impact Score: 2.9

Exploitability Score: 10

Severity: MEDIUM

CVSS v3

Base Score: 7.5

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Impact Score: 3.6

Exploitability Score: 3.9

Severity: HIGH

Tenable Plugins

View all (24 total)

IDNameProductFamilySeverity
150539SUSE SLES11 Security Update : LibVNCServer (SUSE-SU-2020:14355-1)NessusSuSE Local Security Checks
critical
146766EulerOS 2.0 SP2 : vino (EulerOS-SA-2021-1370)NessusHuawei Local Security Checks
high
146731EulerOS 2.0 SP2 : libvncserver (EulerOS-SA-2021-1321)NessusHuawei Local Security Checks
critical
145206EulerOS 2.0 SP3 : libvncserver (EulerOS-SA-2021-1091)NessusHuawei Local Security Checks
critical
145203EulerOS 2.0 SP3 : vino (EulerOS-SA-2021-1129)NessusHuawei Local Security Checks
high
144252EulerOS 2.0 SP5 : libvncserver (EulerOS-SA-2020-2552)NessusHuawei Local Security Checks
high
144222EulerOS 2.0 SP5 : vino (EulerOS-SA-2020-2569)NessusHuawei Local Security Checks
high
141545Ubuntu 16.04 LTS : iTALC vulnerabilities (USN-4587-1)NessusUbuntu Local Security Checks
critical
141301Ubuntu 16.04 LTS / 18.04 LTS / 20.04 LTS : Vino vulnerabilities (USN-4573-1)NessusUbuntu Local Security Checks
critical
140920Ubuntu 18.04 LTS : iTALC vulnerabilities (USN-4547-1)NessusUbuntu Local Security Checks
critical
139969EulerOS 2.0 SP8 : libvncserver (EulerOS-SA-2020-1866)NessusHuawei Local Security Checks
critical
138989openSUSE Security Update : vino (openSUSE-2020-1071)NessusSuSE Local Security Checks
high
138871SUSE SLED15 / SLES15 Security Update : vino (SUSE-SU-2020:2009-1)NessusSuSE Local Security Checks
high
138259SUSE SLED15 / SLES15 Security Update : LibVNCServer (SUSE-SU-2020:1164-2)NessusSuSE Local Security Checks
critical
138132Ubuntu 16.04 LTS / 18.04 LTS / 19.10 / 20.04 : LibVNCServer vulnerabilities (USN-4407-1)NessusUbuntu Local Security Checks
critical
136453openSUSE Security Update : LibVNCServer (openSUSE-2020-624)NessusSuSE Local Security Checks
critical
136396SUSE SLES12 Security Update : LibVNCServer (SUSE-SU-2020:1165-1)NessusSuSE Local Security Checks
critical
136395SUSE SLED15 / SLES15 Security Update : LibVNCServer (SUSE-SU-2020:1164-1)NessusSuSE Local Security Checks
critical
135388SUSE SLES12 Security Update : vino (SUSE-SU-2020:0955-1)NessusSuSE Local Security Checks
high
132345Debian DLA-2045-1 : tightvnc security updateNessusDebian Local Security Checks
critical
131834Virtuozzo 6 : parallels-kernel-modules / etc (VZA-2019-093)NessusVirtuozzo Local Security Checks
high
131432Debian DLA-2014-1 : vino security updateNessusDebian Local Security Checks
critical
130408Debian DLA-1979-1 : italc security updateNessusDebian Local Security Checks
critical
130406Debian DLA-1977-1 : libvncserver security updateNessusDebian Local Security Checks
high