Libvncserver Project Libvncserver — known CVE vulnerabilities
Every CVE whose affected-product data names Libvncserver Project Libvncserver, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (12)
CVE-2016-9941 — CVSS 9.8 (critical): Heap-based buffer overflow in rfbproto.c in LibVNCClient in LibVNCServer before 0.9.11 allows remote servers to cause a denial of service…
CVE-2016-9942 — CVSS 9.8 (critical): Heap-based buffer overflow in ultra.c in LibVNCClient in LibVNCServer before 0.9.11 allows remote servers to cause a denial of service…
CVE-2017-18922 — CVSS 9.8 (critical): It was discovered that websockets.c in LibVNCServer prior to 0.9.12 did not properly decode certain WebSocket frames. A malicious attacker…
CVE-2018-7225 — CVSS 9.8 (critical): An issue was discovered in LibVNCServer through 0.9.11. rfbProcessClientNormalMessage() in rfbserver.c does not sanitize msg.cct.length…
CVE-2026-32853 — CVSS 8.1 (high): LibVNCServer versions 0.9.15 and prior (fixed in commit 009008e) contain a heap out-of-bounds read vulnerability in the UltraZip encoding…
CVE-2026-32854 — CVSS 7.5 (high): LibVNCServer versions 0.9.15 and prior (fixed in commit dc78dee) contain null pointer dereference vulnerabilities in the HTTP proxy…
CVE-2020-14399 — CVSS 7.5 (high): An issue was discovered in LibVNCServer before 0.9.13. Byte-aligned data is accessed through uint32_t pointers in libvncclient/rfbproto.c…
CVE-2020-14400 — CVSS 7.5 (high): An issue was discovered in LibVNCServer before 0.9.13. Byte-aligned data is accessed through uint16_t pointers in libvncserver/translate.c…
CVE-2020-25708 — CVSS 7.5 (high): A divide by zero issue was found to occur in libvncserver-0.9.12. A malicious client could use this flaw to send a specially crafted…
CVE-2020-29260 — CVSS 7.5 (high): libvncclient v0.9.13 was discovered to contain a memory leak via the function rfbClientCleanup().
CVE-2010-5304 — CVSS 7.5 (high): A NULL pointer dereference flaw was found in the way LibVNCServer before 0.9.9 handled certain ClientCutText message. A remote attacker…
CVE-2020-14401 — CVSS 6.5 (medium): An issue was discovered in LibVNCServer before 0.9.13. libvncserver/scale.c has a pixel_value integer overflow.