GCVE - cpe:2.3:a:kaspersky:tightvnc:*:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:kaspersky:tightvnc:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Kaspersky (`0e3919d1-d2ab-5693-bce6-610f4c2052a6`)
Product	Tightvnc (`b47a71d2-95d9-59b6-ab16-6b2024197328`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2019-8287`	vulnerable	2026-06-03 14:40:47.431812	Details available TightVNC code version 1.3.10 contains global buffer overflow in HandleCoRREBBP macro function, which can potentially result code execution. This attack appear to be exploitable via network connectivity. Published: 2019-10-29T16:43:30.000Z Updated: 2024-08-04T21:17:31.162Z Open on db.gcve.eu Reference links https://www.openwall.com/lists/oss-security/2018/12/10/5 https://lists.debian.org/debian-lts-announce/2019/12/msg00028.html https://cert-portal.siemens.com/productcert/pdf/ssa-478893.pdf https://us-cert.cisa.gov/ics/advisories/icsa-20-343-08	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2019-15680`	vulnerable	2026-06-03 14:39:48.071318	Details available TightVNC code version 1.3.10 contains null pointer dereference in HandleZlibBPP function, which results Denial of System (DoS). This attack appear to be exploitable via network connectivity. Published: 2019-10-29T16:45:52.000Z Updated: 2024-08-05T00:56:22.088Z Open on db.gcve.eu Reference links https://www.openwall.com/lists/oss-security/2018/12/10/5 https://lists.debian.org/debian-lts-announce/2019/12/msg00028.html https://usn.ubuntu.com/4407-1/ https://cert-portal.siemens.com/productcert/pdf/ssa-478893.pdf https://us-cert.cisa.gov/ics/advisories/icsa-20-343-08	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2019-15679`	vulnerable	2026-06-03 14:39:48.070923	Details available TightVNC code version 1.3.10 contains heap buffer overflow in InitialiseRFBConnection function, which can potentially result code execution. This attack appear to be exploitable via network connectivity. Published: 2019-10-29T16:45:04.000Z Updated: 2024-08-05T00:56:22.416Z Open on db.gcve.eu Reference links https://www.openwall.com/lists/oss-security/2018/12/10/5 https://lists.debian.org/debian-lts-announce/2019/12/msg00028.html https://cert-portal.siemens.com/productcert/pdf/ssa-478893.pdf https://us-cert.cisa.gov/ics/advisories/icsa-20-343-08	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2019-15678`	vulnerable	2026-06-03 14:39:48.069758	Details available TightVNC code version 1.3.10 contains heap buffer overflow in rfbServerCutText handler, which can potentially result code execution.. This attack appear to be exploitable via network connectivity. Published: 2019-10-29T16:44:08.000Z Updated: 2024-08-05T00:56:22.434Z Open on db.gcve.eu Reference links https://www.openwall.com/lists/oss-security/2018/12/10/5 https://lists.debian.org/debian-lts-announce/2019/12/msg00028.html https://cert-portal.siemens.com/productcert/pdf/ssa-478893.pdf https://us-cert.cisa.gov/ics/advisories/icsa-20-343-08	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.