CVE-2019-8287

CRITICAL9.8EPSS 2.4%

Published: 10/29/2019Modified: 4/28/2026

Description

TightVNC code version 1.3.10 contains global buffer overflow in HandleCoRREBBP macro function, which can potentially result code execution. This attack appear to be exploitable via network connectivity.

Affected packages (1)

Debian/tightvncfrom 0, < 1:1.3.9-9.1

CVSS scores

Source	Version	Severity	Vector
osv	CVSS 3.1	CRITICAL9.8	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2019-8287