VYPR

Vnc Viewer

by Ultravnc

CVEs (5)

  • CVE-2020-37134HigFeb 5, 2026
    risk 0.49cvss 7.5epss 0.00

    UltraVNC Viewer 1.2.4.0 contains a denial of service vulnerability that allows attackers to crash the application by manipulating VNC Server input. Attackers can generate a malformed 256-byte payload and paste it into the VNC Server connection dialog to trigger an application…

  • CVE-2019-25600MedMar 22, 2026
    risk 0.42cvss 6.5epss 0.01

    UltraVNC Viewer 1.2.2.4 contains a denial of service vulnerability that allows attackers to crash the application by supplying an oversized string to the VNC Server input field. Attackers can paste a malicious string containing 256 repeated characters into the VNC Server field…

  • CVE-2006-1652Apr 6, 2006
    risk 0.08cvss epss 0.67

    Multiple buffer overflows in (a) UltraVNC (aka Ultr@VNC) 1.0.1 and earlier and (b) tabbed_viewer 1.29 (1) allow user-assisted remote attackers to execute arbitrary code via a malicious server that sends a long string to a client that connects on TCP port 5900, which triggers an…

  • CVE-2022-41975Sep 30, 2022
    risk 0.00cvss epss 0.00

    RealVNC VNC Server before 6.11.0 and VNC Viewer before 6.22.826 on Windows allow local privilege escalation via MSI installer Repair mode.

  • CVE-2021-41380Sep 17, 2021
    risk 0.00cvss epss 0.01

    RealVNC Viewer 6.21.406 allows remote VNC servers to cause a denial of service (application crash) via crafted RFB protocol data. NOTE: It is asserted that this issue requires social engineering a user into connecting to a fake VNC Server. The VNC Viewer application they are…