3.2.5 STACK-BASED BUFFER OVERFLOW CWE-121 A CVSS v3 base score of 9.8 has been calculated the CVSS vector string is ( AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H). UltraVNC revision 1203 has multiple heap buffer overflow vulnerabilities in VNC client code inside Ultra decoder, which could result in code execution.ĬVE-2019-8262 has been assigned to this vulnerability. UltraVNC revision 1199 has an out-of-bounds read vulnerability in VNC code inside client CoRRE decoder caused by multiplication overflow.ĬVE-2019-8261 has been assigned to this vulnerability.
UltraVNC revision 1199 has an out-of-bounds read vulnerability in VNC client RRE decoder code caused by multiplication overflow.ĬVE-2019-8260 has been assigned to this vulnerability. A CVSS v3 base score of 7.5 has been calculated the CVSS vector string is ( AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N). Combined with another vulnerability, it can be used to leak stack memory and bypass ASLR.ĬVE-2019-8259 has been assigned to this vulnerability. UltraVNC revision 1198 contains multiple memory leaks in VNC client code, which could allow an attacker to read stack memory and allow for information disclosure. SIMATIC WinCC Runtime Advanced: All versions prior to v16 Update 4ģ.2 VULNERABILITY OVERVIEW 3.2.1 IMPROPER INITIALIZATION CWE-665.SIMATIC HMI KTP Mobile Panels KTP400F, KTP700, KTP700F, KTP900, and KTP900F: All versions prior to v16 Update 4.SIPLUS variants): All versions prior to v16 Update 4 SIMATIC HMI Comfort Panels 4’to 22’ (incl.
0 kommentar(er)
