Libvncserver
This hub aggregates every CVE we track for Libvncserver, a product in the oss libraries space. Use it to gauge the current risk picture and drill into individual advisories.
44
CVEs tracked
12
Critical
24
High
0
In CISA KEV
Severity distribution
HIGH24CRITICAL12MEDIUM8
Monthly trend
0
0
0
0
0
0
1
0
0
0
0
0
0
0
0
0
0
0
0
0
2
0
1
0
2024-072026-06
Latest CVEs
The 15 most recently published vulnerabilities affecting Libvncserver.
- CVE-2026-44988LibVNCClient Tight Gradient decoding allows malicious server-triggered heap/stack OOB writes8.8
- CVE-2026-32854LibVNCServer httpd proxy NULL Pointer Dereference7.5
- CVE-2026-32853LibVNCServer UltraZip Encoding Heap Out-of-bounds Read8.1
- CVE-2019-15690LibVNCServer 0.9.12 release and earlier contains heap buffer overflow vulnerability within the HandleCursorShape() function in libvncclient/cursor.c. An attacker sends cursor shapes with specially ...8.8
- CVE-2020-29260libvncclient v0.9.13 was discovered to contain a memory leak via the function rfbClientCleanup().7.5
- CVE-2020-25708A divide by zero issue was found to occur in libvncserver-0.9.12. A malicious client could use this flaw to send a specially crafted message that, when processed by the VNC server, would lead to a ...7.5
- CVE-2017-18922It was discovered that websockets.c in LibVNCServer prior to 0.9.12 did not properly decode certain WebSocket frames. A malicious attacker could exploit this by sending specially crafted WebSocket ...9.8
- CVE-2020-14396An issue was discovered in LibVNCServer before 0.9.13. libvncclient/tls_openssl.c has a NULL pointer dereference.7.5
- CVE-2020-14397An issue was discovered in LibVNCServer before 0.9.13. libvncserver/rfbregion.c has a NULL pointer dereference.7.5
- CVE-2020-14398An issue was discovered in LibVNCServer before 0.9.13. An improperly closed TCP connection causes an infinite loop in libvncclient/sockets.c.7.5
- CVE-2020-14399An issue was discovered in LibVNCServer before 0.9.13. Byte-aligned data is accessed through uint32_t pointers in libvncclient/rfbproto.c. NOTE: there is reportedly "no trust boundary crossed.7.5
- CVE-2020-14400An issue was discovered in LibVNCServer before 0.9.13. Byte-aligned data is accessed through uint16_t pointers in libvncserver/translate.c. NOTE: Third parties do not consider this to be a vulnerab...7.5
- CVE-2020-14401An issue was discovered in LibVNCServer before 0.9.13. libvncserver/scale.c has a pixel_value integer overflow.6.5
- CVE-2020-14402An issue was discovered in LibVNCServer before 0.9.13. libvncserver/corre.c allows out-of-bounds access via encodings.5.4
- CVE-2020-14403An issue was discovered in LibVNCServer before 0.9.13. libvncserver/hextile.c allows out-of-bounds access via encodings.5.4
Product normalization is registry-driven with AI assist and human review. How it works