CVE-2017-18922

Severity CVSS v4.0:
Pending analysis
Type:
CWE-787 Out-of-bounds Write
Publication date:
30/06/2020
Last modified:
07/11/2023

Description

It was discovered that websockets.c in LibVNCServer prior to 0.9.12 did not properly decode certain WebSocket frames. A malicious attacker could exploit this by sending specially crafted WebSocket frames to a server, causing a heap-based buffer overflow.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:libvncserver_project:libvncserver:*:*:*:*:*:*:*:* 0.9.12 (excluding)
cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:19.10:*:*:*:*:*:*:*
cpe:2.3:o:canonical:ubuntu_linux:20.04:*:*:*:lts:*:*:*
cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*
cpe:2.3:o:opensuse:leap:15.2:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:31:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:32:*:*:*:*:*:*:*
cpe:2.3:o:siemens:simatic_itc1500_firmware:*:*:*:*:*:*:*:* 3.0.0.0 (including) 3.2.1.0 (excluding)
cpe:2.3:h:siemens:simatic_itc1500:-:*:*:*:*:*:*:*
cpe:2.3:o:siemens:simatic_itc1500_pro_firmware:*:*:*:*:*:*:*:* 3.0.0.0 (including) 3.2.1.0 (excluding)
cpe:2.3:h:siemens:simatic_itc1500_pro:-:*:*:*:*:*:*:*
cpe:2.3:o:siemens:simatic_itc1900_firmware:*:*:*:*:*:*:*:* 3.0.0.0 (including) 3.2.1.0 (excluding)
cpe:2.3:h:siemens:simatic_itc1900:-:*:*:*:*:*:*:*