Vulnerability DatabaseCVE-2019-15690

CVE-2019-15690:
Alibaba Cloud Linux (Aliyun Linux) vulnerability analysis and mitigation

Overview

LibVNCServer 0.9.12 release and earlier contains a heap buffer overflow vulnerability within the HandleCursorShape() function in libvncclient/cursor.c. The vulnerability allows an attacker to send cursor shapes with specially crafted dimensions, which can result in remote code execution (Kaspersky ICS-CERT, Red Hat Portal).

Technical details

The vulnerability is an integer overflow that leads to a heap-based buffer overflow in the HandleCursorShape() function. It has been assigned a CVSS v3 base score of 9.8 by Red Hat, with attack vector being Network, attack complexity Low, requiring no privileges or user interaction. The vulnerability is classified under CWE-190 leading to CWE-122 (Integer Overflow or Wraparound leads to Heap-based Buffer Overflow) (Red Hat Portal).

Impact

The highest threat from this vulnerability is to data confidentiality and integrity as well as system availability. Successful exploitation could allow an attacker to execute arbitrary code on the affected system. The vulnerability affects the system when a user or application using libvncserver connects to an untrusted server (Red Hat Portal, Kaspersky ICS-CERT).

Mitigation and workarounds

The primary mitigation is to update LibVNCServer to the commit with hash 54220248886b5001fbbb9fa73c4e1a2cb9413fed or newer. As a workaround, LibVNCServer should not be used to connect to untrusted servers (Red Hat Portal, Kaspersky ICS-CERT).

Additional resources

Source: This report was generated using AI

Published January 24, 2025

Severity HIGH

CNA Score 8.8

Affected Technologies

Alibaba Cloud Linux (Aliyun Linux)
Linux Debian

Has Public Exploit No

Has CISA KEV Exploit No

CISA KEV Release Date N/A

CISA KEV Due Date N/A

Exploitation Probability Percentile (EPSS) 49

Exploitation Probability (EPSS) 0.3

Sources

NVD
Debian Security Tracker
- Debian 8, 9, 10, 11, 12 Severity HIGHHas FixAdded at: Nov 23, 2021
- Debian 13 Severity HIGHHas FixAdded at: Jun 11, 2023
Red Hat Errata
- Red Hat 6 Severity HIGHNo FixAdded at: Nov 23, 2021
- Red Hat 7 Severity HIGHHas FixAdded at: Nov 23, 2021
- Red Hat 8 Severity HIGHHas FixAdded at: Nov 23, 2021
Ubuntu Security Tracker
- Ubuntu 16.04, 18.04, 19.10, 20.04 Severity MEDIUMHas FixAdded at: Nov 23, 2021

See Wiz in action

Learn how Wiz connects to your environment
and gives complete visibility

Get a demo

Free Vulnerability Assessment

Benchmark your Cloud Security Posture

Evaluate your cloud security practices across 9 security domains to benchmark your risk level and identify gaps in your defenses.

Request assessment

Additional Wiz resources

Cloud Vulnerability DB

An open project to list all known cloud vulnerabilities and Cloud Service Provider security issues

Cloud threat landscape

A comprehensive threat intelligence database of cloud security incidents, actors, tools and techniques

PEACH

A step-by-step framework for modeling and improving SaaS and PaaS tenant isolation

Get a personalized demo

Ready to see Wiz in action?

“Best User Experience I have ever seen, provides full visibility to cloud workloads.”

David EstlickCISO

“Wiz provides a single pane of glass to see what is going on in our cloud environments.”

Adam FletcherChief Security Officer

“We know that if Wiz identifies something as critical, it actually is.”

Greg PoniatowskiHead of Threat and Vulnerability Management