CVE-2019-15679
CRITICAL9.8EPSS 2.6%Published: 10/29/2019Modified: 4/28/2026
Description
TightVNC code version 1.3.10 contains heap buffer overflow in InitialiseRFBConnection function, which can potentially result code execution. This attack appear to be exploitable via network connectivity.
Affected packages (1)
- Debian/tightvncfrom 0, < 1:1.3.9-9.1
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 3.1 | CRITICAL9.8 | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |