CVE-2019-15693MEDIUM
Description
TigerVNC version prior to 1.10.1 is vulnerable to heap buffer overflow, which occurs in TightDecoder::FilterGradient. Exploitation of this vulnerability could potentially result into remote code execution. This attack appear to be exploitable via network connectivity.
References
http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00039.html
https://github.com/CendioOssman/tigervnc/commit/b4ada8d0c6dac98c8b91fc64d112569a8ae5fb95
Details
Source: MITRE
Published: 2019-12-26
Updated: 2020-01-21
Type: CWE-787
Risk Information
CVSS v2.0
Base Score: 6.5
Vector: AV:N/AC:L/Au:S/C:P/I:P/A:P
Impact Score: 6.4
Exploitability Score: 8
Severity: MEDIUM
CVSS v3.0
Base Score: 7.2
Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Impact Score: 5.9
Exploitability Score: 1.2
Severity: HIGH
Vulnerable Software
Configuration 1
OR
Tenable Plugins
| ID | Name | Product | Family | Severity |
|---|---|---|---|---|
| 147375 | NewStart CGSL CORE 5.04 / MAIN 5.04 : tigervnc Multiple Vulnerabilities (NS-SA-2021-0035) | Nessus | NewStart CGSL Local Security Checks | medium |
| 146755 | EulerOS 2.0 SP2 : tigervnc (EulerOS-SA-2021-1369) | Nessus | Huawei Local Security Checks | medium |
| 146169 | EulerOS 2.0 SP5 : tigervnc (EulerOS-SA-2021-1237) | Nessus | Huawei Local Security Checks | medium |
| 146003 | CentOS 8 : tigervnc (CESA-2020:1497) | Nessus | CentOS Local Security Checks | medium |
| 145143 | EulerOS 2.0 SP3 : tigervnc (EulerOS-SA-2021-1127) | Nessus | Huawei Local Security Checks | medium |
| 144989 | Amazon Linux AMI : tigervnc (ALAS-2021-1470) | Nessus | Amazon Linux Local Security Checks | medium |
| 144468 | Amazon Linux AMI : tigervnc (ALAS-2020-1470) (deprecated) | Nessus | Amazon Linux Local Security Checks | medium |
| 141997 | Amazon Linux 2 : tigervnc (ALAS-2020-1552) | Nessus | Amazon Linux Local Security Checks | medium |
| 141653 | Scientific Linux Security Update : tigervnc on SL7.x x86_64 (20201001) | Nessus | Scientific Linux Local Security Checks | medium |
| 141600 | CentOS 7 : tigervnc (CESA-2020:3875) | Nessus | CentOS Local Security Checks | medium |
| 141215 | Oracle Linux 7 : tigervnc (ELSA-2020-3875) | Nessus | Oracle Linux Local Security Checks | medium |
| 141028 | RHEL 7 : tigervnc (RHSA-2020:3875) | Nessus | Red Hat Local Security Checks | medium |
| 139988 | EulerOS 2.0 SP8 : tigervnc (EulerOS-SA-2020-1885) | Nessus | Huawei Local Security Checks | medium |
| 138772 | NewStart CGSL MAIN 6.01 : tigervnc Multiple Vulnerabilities (NS-SA-2020-0032) | Nessus | NewStart CGSL Local Security Checks | medium |
| 138296 | SUSE SLES12 Security Update : tigervnc (SUSE-SU-2020:1749-1) | Nessus | SuSE Local Security Checks | medium |
| 135876 | RHEL 8 : tigervnc (RHSA-2020:1497) | Nessus | Red Hat Local Security Checks | medium |
| 135748 | Oracle Linux 8 : tigervnc (ELSA-2020-1497) | Nessus | Oracle Linux Local Security Checks | medium |
| 133395 | SUSE SLES12 Security Update : tigervnc (SUSE-SU-2020:0266-1) | Nessus | SuSE Local Security Checks | medium |
| 133201 | SUSE SLES12 Security Update : tigervnc (SUSE-SU-2020:0159-1) | Nessus | SuSE Local Security Checks | medium |
| 133173 | openSUSE Security Update : tigervnc (openSUSE-2020-87) | Nessus | SuSE Local Security Checks | medium |
| 133035 | SUSE SLED15 / SLES15 Security Update : tigervnc (SUSE-SU-2020:0113-1) | Nessus | SuSE Local Security Checks | medium |
| 133034 | SUSE SLED15 / SLES15 Security Update : tigervnc (SUSE-SU-2020:0112-1) | Nessus | SuSE Local Security Checks | medium |