CVE-2018-21247

An issue was discovered in LibVNCServer before 0.9.13. There is an information leak (of uninitialized memory contents) in the libvncclient/rfbproto.c ConnectToRFBRepeater function.

CVSS v3 7.5 HIGH
CVSS v2.0 5.0 MEDIUM

7.5^/10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

5.0^/10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:N/AC:L/Au:N/C:P/I:N/A:N

Exploitability : 10.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

References

Link	Resource
http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00033.html	Mailing List Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00055.html	Mailing List Third Party Advisory
http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00066.html	Mailing List Third Party Advisory
https://cert-portal.siemens.com/productcert/pdf/ssa-390195.pdf	Patch Third Party Advisory
https://github.com/LibVNC/libvncserver/compare/LibVNCServer-0.9.12...LibVNCServer-0.9.13	Patch Third Party Advisory
https://github.com/LibVNC/libvncserver/issues/253	Issue Tracking Third Party Advisory
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4F6FUH4EFK4NAP6GT4TQRTBKWIRCZLIY/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NVP7TJVYJDXDFRHVQ3ENEN3H354QPXEZ/

Configurations

Configuration 1 (hide)

cpe:2.3:a:libvnc_project:libvncserver:*:*:*:*:*:*:*:*

Configuration 2 (hide)

OR	cpe:2.3:o:canonical:ubuntu_linux:14.04::::lts:::
	cpe:2.3:o:canonical:ubuntu_linux:16.04::::esm:::
	cpe:2.3:o:canonical:ubuntu_linux:16.04::::lts:::
	cpe:2.3:o:canonical:ubuntu_linux:18.04::::lts:::
	cpe:2.3:o:canonical:ubuntu_linux:18.10:::::::*

Configuration 3 (hide)

OR	cpe:2.3:o:debian:debian_linux:8.0:::::::*
	cpe:2.3:o:debian:debian_linux:9.0:::::::*

Configuration 4 (hide)

AND

cpe:2.3:o:siemens:simatic_itc1500_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_itc1500:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND

cpe:2.3:o:siemens:simatic_itc1500_pro_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_itc1500_pro:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND

cpe:2.3:o:siemens:simatic_itc1900_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_itc1900:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND

cpe:2.3:o:siemens:simatic_itc1900_pro_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_itc1900_pro:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND

cpe:2.3:o:siemens:simatic_itc2200_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_itc2200:-:*:*:*:*:*:*:*

Configuration 9 (hide)

AND

cpe:2.3:o:siemens:simatic_itc2200_pro_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:siemens:simatic_itc2200_pro:-:*:*:*:*:*:*:*

Configuration 10 (hide)

cpe:2.3:o:opensuse:leap:15.2:*:*:*:*:*:*:*

History

07 Nov 2023, 02:56

Type	Values Removed	Values Added
References	{'url': 'https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/4F6FUH4EFK4NAP6GT4TQRTBKWIRCZLIY/', 'name': 'FEDORA-2020-1a4b1c8271', 'tags': ['Mailing List', 'Third Party Advisory'], 'refsource': 'FEDORA'} {'url': 'https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/NVP7TJVYJDXDFRHVQ3ENEN3H354QPXEZ/', 'name': 'FEDORA-2020-37112ac660', 'tags': ['Mailing List', 'Third Party Advisory'], 'refsource': 'FEDORA'}	() https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NVP7TJVYJDXDFRHVQ3ENEN3H354QPXEZ/ - () https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/4F6FUH4EFK4NAP6GT4TQRTBKWIRCZLIY/ -

10 Mar 2022, 15:29

Type	Values Removed	Values Added
CPE	cpe:2.3:o:fedoraproject:fedora:31:::::::* cpe:2.3:a:libvncserver_project:libvncserver:::::::: cpe:2.3:o:fedoraproject:fedora:32:::::::* cpe:2.3:o:opensuse:leap:15.1:::::::*	cpe:2.3:h:siemens:simatic_itc1500:-:::::::* cpe:2.3:o:canonical:ubuntu_linux:14.04::::lts::: cpe:2.3:h:siemens:simatic_itc2200_pro:-:::::::* cpe:2.3:o:canonical:ubuntu_linux:16.04::::lts::: cpe:2.3:o:debian:debian_linux:9.0:::::::* cpe:2.3:o:canonical:ubuntu_linux:18.04::::lts::: cpe:2.3:o:debian:debian_linux:8.0:::::::* cpe:2.3:o:siemens:simatic_itc1900_pro_firmware:::::::: cpe:2.3:h:siemens:simatic_itc1500_pro:-:::::::* cpe:2.3:o:canonical:ubuntu_linux:16.04::::esm::: cpe:2.3:o:siemens:simatic_itc1900_firmware:::::::: cpe:2.3:o:canonical:ubuntu_linux:18.10:::::::* cpe:2.3:o:siemens:simatic_itc2200_pro_firmware:::::::: cpe:2.3:a:libvnc_project:libvncserver:::::::: cpe:2.3:o:siemens:simatic_itc2200_firmware:::::::: cpe:2.3:o:siemens:simatic_itc1500_firmware:::::::: cpe:2.3:h:siemens:simatic_itc1900:-:::::::* cpe:2.3:h:siemens:simatic_itc2200:-:::::::* cpe:2.3:h:siemens:simatic_itc1900_pro:-:::::::* cpe:2.3:o:siemens:simatic_itc1500_pro_firmware::::::::
First Time		Siemens simatic Itc2200 Siemens simatic Itc2200 Pro Firmware Siemens Canonical ubuntu Linux Siemens simatic Itc1900 Firmware Siemens simatic Itc1900 Pro Firmware Siemens simatic Itc1500 Firmware Canonical Siemens simatic Itc1500 Libvnc Project Libvnc Project libvncserver Siemens simatic Itc1500 Pro Debian debian Linux Siemens simatic Itc1900 Pro Siemens simatic Itc1900 Siemens simatic Itc1500 Pro Firmware Siemens simatic Itc2200 Firmware Siemens simatic Itc2200 Pro Debian
References	~~(SUSE) http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00066.html -~~	(SUSE) http://lists.opensuse.org/opensuse-security-announce/2020-07/msg00066.html - Mailing List, Third Party Advisory
References	~~(CONFIRM) https://cert-portal.siemens.com/productcert/pdf/ssa-390195.pdf -~~	(CONFIRM) https://cert-portal.siemens.com/productcert/pdf/ssa-390195.pdf - Patch, Third Party Advisory
CWE	~~CWE-200~~	CWE-909

14 Dec 2021, 14:15

Type	Values Removed	Values Added
References		(CONFIRM) https://cert-portal.siemens.com/productcert/pdf/ssa-390195.pdf -

Information

Published : 2020-06-17 16:15

Updated : 2023-12-10 13:27

NVD link : CVE-2018-21247

Mitre link : CVE-2018-21247

CVE.ORG link : CVE-2018-21247

JSON object : View

Products Affected

siemens

simatic_itc1900
simatic_itc2200_pro
simatic_itc1900_pro
simatic_itc1500_firmware
simatic_itc1900_firmware
simatic_itc1500
simatic_itc1500_pro_firmware
simatic_itc2200
simatic_itc2200_pro_firmware
simatic_itc1500_pro
simatic_itc1900_pro_firmware
simatic_itc2200_firmware

canonical

ubuntu_linux

debian

debian_linux

opensuse

leap

libvnc_project

libvncserver

CWE

CWE-909

Missing Initialization of Resource

7.5 /10

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact NONE

Availability Impact NONE

Scope UNCHANGED

5.0 /10

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

JSON object

Attach tags to CVE-2018-21247

7.5^/10

5.0^/10

Attach tags to `CVE-2018-21247`