CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-8265

UltraVNC revision 1207 has multiple out-of-bounds access vulnerabilities connected with improper usage of SETPIXELS macro in VNC client code, which can potentially result in code execution. This attack appears to be exploitable via network connectivity. These vulnerabilities have been fixed in revision 1208.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.017

EPSS Ranking 81.7%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 7.5

References

Products affected by CVE-2019-8265

Uvnc » Ultravnc » Version: 1.0.9.6.2

cpe:2.3:a:uvnc:ultravnc:1.0.9.6.2
Uvnc » Ultravnc » Version: 1.1.8.9

cpe:2.3:a:uvnc:ultravnc:1.1.8.9
Uvnc » Ultravnc » Version: 1.1.9.3

cpe:2.3:a:uvnc:ultravnc:1.1.9.3
Uvnc » Ultravnc » Version: 1.1.9.6

cpe:2.3:a:uvnc:ultravnc:1.1.9.6
Uvnc » Ultravnc » Version: 1.2.0.5

cpe:2.3:a:uvnc:ultravnc:1.2.0.5
Uvnc » Ultravnc » Version: 1.2.0.9

cpe:2.3:a:uvnc:ultravnc:1.2.0.9
Uvnc » Ultravnc » Version: 1.2.1.0

cpe:2.3:a:uvnc:ultravnc:1.2.1.0
Uvnc » Ultravnc » Version: 1.2.1.2

cpe:2.3:a:uvnc:ultravnc:1.2.1.2
Uvnc » Ultravnc » Version: 1.2.1.6

cpe:2.3:a:uvnc:ultravnc:1.2.1.6
Uvnc » Ultravnc » Version: 1.2.1.7

cpe:2.3:a:uvnc:ultravnc:1.2.1.7
Uvnc » Ultravnc » Version: 1.2.2.2

cpe:2.3:a:uvnc:ultravnc:1.2.2.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-8265

Products

Pricing

Contact Us