vncserver
by Realvnc
CVEs (3)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2022-41975 | 0.00 | — | 0.00 | Sep 30, 2022 | RealVNC VNC Server before 6.11.0 and VNC Viewer before 6.22.826 on Windows allow local privilege escalation via MSI installer Repair mode. | |||
| CVE-2022-27502 | 0.00 | — | 0.01 | Jun 10, 2022 | RealVNC VNC Server 6.9.0 through 5.1.0 for Windows allows local privilege escalation because an installer repair operation executes %TEMP% files as SYSTEM. | |||
| CVE-2002-1511 | 0.00 | — | 0.02 | Mar 3, 2003 | The vncserver wrapper for vnc before 3.3.3r2-21 uses the rand() function instead of srand(), which causes vncserver to generate weak cookies. |
- CVE-2022-41975Sep 30, 2022risk 0.00cvss —epss 0.00
RealVNC VNC Server before 6.11.0 and VNC Viewer before 6.22.826 on Windows allow local privilege escalation via MSI installer Repair mode.
- CVE-2022-27502Jun 10, 2022risk 0.00cvss —epss 0.01
RealVNC VNC Server 6.9.0 through 5.1.0 for Windows allows local privilege escalation because an installer repair operation executes %TEMP% files as SYSTEM.
- CVE-2002-1511Mar 3, 2003risk 0.00cvss —epss 0.02
The vncserver wrapper for vnc before 3.3.3r2-21 uses the rand() function instead of srand(), which causes vncserver to generate weak cookies.