LibVNC commit before d01e1bb4246323ba6fcee3b82ef1faa9b1dac82a contains a memory leak (CWE-655) in VNC server code, which allow an attacker to read stack memory and can be abused for information disclosure. Combined with another vulnerability, it can be used to leak stack memory and bypass ASLR. This attack appear to be exploitable via network connectivity. These vulnerabilities have been fixed in commit d01e1bb4246323ba6fcee3b82ef1faa9b1dac82a.
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
|
Configuration 4 (hide)
| AND |
|
Configuration 5 (hide)
| AND |
|
Configuration 6 (hide)
| AND |
|
Configuration 7 (hide)
| AND |
|
Configuration 8 (hide)
| AND |
|
Configuration 9 (hide)
| AND |
|
History
05 Apr 2022, 21:10
| Type | Values Removed | Values Added |
|---|---|---|
| References | (CONFIRM) https://cert-portal.siemens.com/productcert/pdf/ssa-390195.pdf - Third Party Advisory | |
| First Time |
Siemens simatic Itc2200
Siemens simatic Itc2200 Pro Firmware Siemens Siemens simatic Itc1900 Pro Siemens simatic Itc1500 Libvnc Project Siemens simatic Itc1900 Siemens simatic Itc1900 Firmware Siemens simatic Itc1900 Pro Firmware Siemens simatic Itc1500 Pro Firmware Siemens simatic Itc2200 Firmware Siemens simatic Itc1500 Firmware Siemens simatic Itc2200 Pro Libvnc Project libvncserver Siemens simatic Itc1500 Pro |
|
| CPE | cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:* cpe:2.3:o:canonical:ubuntu_linux:20.04:*:*:*:lts:*:*:* cpe:2.3:o:canonical:ubuntu_linux:19.10:*:*:*:*:*:*:* |
cpe:2.3:h:siemens:simatic_itc1500_pro:-:*:*:*:*:*:*:* cpe:2.3:h:siemens:simatic_itc1900:-:*:*:*:*:*:*:* cpe:2.3:h:siemens:simatic_itc1500:-:*:*:*:*:*:*:* cpe:2.3:h:siemens:simatic_itc2200:-:*:*:*:*:*:*:* cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:* cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:* cpe:2.3:o:siemens:simatic_itc1900_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:* cpe:2.3:o:siemens:simatic_itc2200_pro_firmware:*:*:*:*:*:*:*:* cpe:2.3:h:siemens:simatic_itc1900_pro:-:*:*:*:*:*:*:* cpe:2.3:a:libvnc_project:libvncserver:*:*:*:*:*:*:*:* cpe:2.3:h:siemens:simatic_itc2200_pro:-:*:*:*:*:*:*:* cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:* cpe:2.3:o:siemens:simatic_itc1900_pro_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:siemens:simatic_itc2200_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:siemens:simatic_itc1500_pro_firmware:*:*:*:*:*:*:*:* cpe:2.3:o:siemens:simatic_itc1500_firmware:*:*:*:*:*:*:*:* |
14 Dec 2021, 14:15
| Type | Values Removed | Values Added |
|---|---|---|
| References |
|
15 Jul 2021, 19:51
| Type | Values Removed | Values Added |
|---|---|---|
| CPE | cpe:2.3:a:libvncserver_project:libvncserver:0.9.12:*:*:*:*:*:*:* | |
| References | (UBUNTU) https://usn.ubuntu.com/4587-1/ - Third Party Advisory |
Information
Published : 2019-10-29 19:15
Updated : 2023-12-10 13:13
NVD link : CVE-2019-15681
Mitre link : CVE-2019-15681
CVE.ORG link : CVE-2019-15681
JSON object : View
Products Affected
siemens
- simatic_itc1500_pro_firmware
- simatic_itc2200_pro_firmware
- simatic_itc2200_firmware
- simatic_itc1900_pro
- simatic_itc1500
- simatic_itc1900_firmware
- simatic_itc1500_pro
- simatic_itc1500_firmware
- simatic_itc2200
- simatic_itc1900_pro_firmware
- simatic_itc1900
- simatic_itc2200_pro
canonical
- ubuntu_linux
libvnc_project
- libvncserver
debian
- debian_linux
CWE
CWE-665
Improper Initialization