VulnerableCode Package Details - pkg:deb/debian/tightvnc@1:1.3.9-9%2Bdeb9u1

Staging Environment: Content and features may be unstable or change without notice.

Search for packages

Package details: pkg:deb/debian/tightvnc@1:1.3.9-9%2Bdeb9u1

Essentials
History (27)

purl	pkg:deb/debian/tightvnc@1:1.3.9-9%2Bdeb9u1

Next non-vulnerable version	1:1.3.10-3
Latest non-vulnerable version	1:1.3.10-3
Risk	4.4

Vulnerabilities affecting this package (9)

Vulnerability	Summary	Fixed by
VCID-1hmm-y54k-3uhm Aliases: CVE-2014-6053	security update	1:1.3.10-3 Affected by 0 other vulnerabilities.
VCID-bngs-4nkn-rbh1 Aliases: CVE-2018-20022	Multiple vulnerabilities have been found in ssvnc, the worst of which could result in the arbitrary execution of code.	1:1.3.10-3 Affected by 0 other vulnerabilities.
VCID-du88-cbhp-rkcc Aliases: CVE-2018-20021	Multiple vulnerabilities have been found in ssvnc, the worst of which could result in the arbitrary execution of code.	1:1.3.10-3 Affected by 0 other vulnerabilities.
VCID-efft-1f56-jqeq Aliases: CVE-2018-7225	Multiple vulnerabilities have been found in LibVNCServer, the worst of which could result in the arbitrary execution of code.	1:1.3.10-3 Affected by 0 other vulnerabilities.
VCID-p8jd-v87m-fqfp Aliases: CVE-2019-15679	TightVNC code version 1.3.10 contains heap buffer overflow in InitialiseRFBConnection function, which can potentially result code execution. This attack appear to be exploitable via network connectivity.	1:1.3.10-3 Affected by 0 other vulnerabilities.
VCID-q4eg-8ph7-nfer Aliases: CVE-2019-15681	libvncserver: information disclosure and ASLR bypass	1:1.3.10-3 Affected by 0 other vulnerabilities.
VCID-qtxu-6h7h-p3h7 Aliases: CVE-2019-15680	TightVNC code version 1.3.10 contains null pointer dereference in HandleZlibBPP function, which results Denial of System (DoS). This attack appear to be exploitable via network connectivity.	1:1.3.10-3 Affected by 0 other vulnerabilities.
VCID-xu9q-7vz2-pkcc Aliases: CVE-2019-15678	TightVNC code version 1.3.10 contains heap buffer overflow in rfbServerCutText handler, which can potentially result code execution.. This attack appear to be exploitable via network connectivity.	1:1.3.10-3 Affected by 0 other vulnerabilities.
VCID-ytfy-ze1d-n7cp Aliases: CVE-2019-8287	TightVNC code version 1.3.10 contains global buffer overflow in HandleCoRREBBP macro function, which can potentially result code execution. This attack appear to be exploitable via network connectivity.	1:1.3.10-3 Affected by 0 other vulnerabilities.

Vulnerabilities fixed by this package (0)

Vulnerability	Summary	Aliases
This package is not known to fix vulnerabilities.

Date	Actor	Action	Vulnerability	Source	VulnerableCode Version
2026-04-16T00:56:45.288260+00:00	Debian Oval Importer	Affected by	VCID-du88-cbhp-rkcc	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T23:11:20.663441+00:00	Debian Oval Importer	Affected by	VCID-efft-1f56-jqeq	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T21:42:37.144437+00:00	Debian Oval Importer	Affected by	VCID-1hmm-y54k-3uhm	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T17:57:41.078793+00:00	Debian Oval Importer	Affected by	VCID-p8jd-v87m-fqfp	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T16:59:34.977150+00:00	Debian Oval Importer	Affected by	VCID-qtxu-6h7h-p3h7	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T16:44:11.315610+00:00	Debian Oval Importer	Affected by	VCID-q4eg-8ph7-nfer	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T15:50:36.503707+00:00	Debian Oval Importer	Affected by	VCID-xu9q-7vz2-pkcc	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T15:40:52.375261+00:00	Debian Oval Importer	Affected by	VCID-ytfy-ze1d-n7cp	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-15T15:20:35.433969+00:00	Debian Oval Importer	Affected by	VCID-bngs-4nkn-rbh1	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.4.0
2026-04-12T00:29:03.776635+00:00	Debian Oval Importer	Affected by	VCID-du88-cbhp-rkcc	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T22:47:16.842616+00:00	Debian Oval Importer	Affected by	VCID-efft-1f56-jqeq	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T21:21:22.324456+00:00	Debian Oval Importer	Affected by	VCID-1hmm-y54k-3uhm	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T17:43:33.310037+00:00	Debian Oval Importer	Affected by	VCID-p8jd-v87m-fqfp	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T16:46:11.945562+00:00	Debian Oval Importer	Affected by	VCID-qtxu-6h7h-p3h7	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T16:31:01.751518+00:00	Debian Oval Importer	Affected by	VCID-q4eg-8ph7-nfer	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T15:38:15.592658+00:00	Debian Oval Importer	Affected by	VCID-xu9q-7vz2-pkcc	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T15:28:42.341735+00:00	Debian Oval Importer	Affected by	VCID-ytfy-ze1d-n7cp	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-11T15:08:51.980733+00:00	Debian Oval Importer	Affected by	VCID-bngs-4nkn-rbh1	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.3.0
2026-04-08T23:59:26.493059+00:00	Debian Oval Importer	Affected by	VCID-du88-cbhp-rkcc	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T22:22:00.618626+00:00	Debian Oval Importer	Affected by	VCID-efft-1f56-jqeq	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T21:00:03.638790+00:00	Debian Oval Importer	Affected by	VCID-1hmm-y54k-3uhm	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T17:30:53.678114+00:00	Debian Oval Importer	Affected by	VCID-p8jd-v87m-fqfp	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T16:36:31.105213+00:00	Debian Oval Importer	Affected by	VCID-qtxu-6h7h-p3h7	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T16:22:12.549540+00:00	Debian Oval Importer	Affected by	VCID-q4eg-8ph7-nfer	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T15:32:13.169446+00:00	Debian Oval Importer	Affected by	VCID-xu9q-7vz2-pkcc	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T15:23:03.039263+00:00	Debian Oval Importer	Affected by	VCID-ytfy-ze1d-n7cp	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0
2026-04-08T15:03:59.915965+00:00	Debian Oval Importer	Affected by	VCID-bngs-4nkn-rbh1	https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2	38.1.0