VYPR

TurboVNC

by TurboVNC

CVEs (2)

  • CVE-2025-58435MedSep 9, 2025
    risk 0.20cvss epss 0.00

    Open OnDemand is an open-source HPC portal. Prior to versions 3.1.15 and 4.0.7, noVNC interactive applications did not correctly rotate the password when TurboVNC was higher than version 3.1.2. The likelihood of exploitation is low as a user would need to share their link to an…

  • CVE-2019-15683Oct 29, 2019
    risk 0.02cvss epss 0.19

    TurboVNC server code contains stack buffer overflow vulnerability in commit prior to cea98166008301e614e0d36776bf9435a536136e. This could possibly result into remote code execution, since stack frame is not protected with stack canary. This attack appear to be exploitable via…