CVE-2019-15680
HIGH7.5EPSS 0.73%Published: 10/29/2019Modified: 4/28/2026
Description
TightVNC code version 1.3.10 contains null pointer dereference in HandleZlibBPP function, which results Denial of System (DoS). This attack appear to be exploitable via network connectivity.
Affected packages (2)
- Debian/libvncserverfrom 0
- Debian/tightvncfrom 0, < 1:1.3.9-9.1
CVSS scores
| Source | Version | Severity | Vector |
|---|---|---|---|
| osv | CVSS 3.1 | HIGH7.5 | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H |