Browse all 7 CVE security advisories affecting UltraVNC. AI-powered Chinese analysis, POCs, and references for each vulnerability.
UltraVNC is a remote desktop software primarily used for system administration and remote access. Historically, it has faced vulnerabilities including remote code execution, cross-site scripting, and privilege escalation, with seven CVEs currently recorded. The application's security characteristics include optional encryption and authentication mechanisms, though these may not be enabled by default. Notable security incidents involve vulnerabilities that could allow unauthorized remote access or system compromise, particularly when operating over unsecured networks or with weak configurations. Users must ensure proper hardening and updates to mitigate risks associated with these known issues.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2022-24750 | Low privilege user is able to exploit the service and gain SYSTEM privileges in UltraVNC server — UltraVNCCWE-269 | 8.8 | High | 2022-03-10 |
| CVE-2018-15361 | UltraVNC 缓冲区错误漏洞 — UltraVNCCWE-124 | 9.8 | - | 2019-03-05 |
| CVE-2019-8258 | UltraVNC 缓冲区错误漏洞 — UltraVNCCWE-122 | 9.8 | - | 2019-03-05 |
| CVE-2019-8259 | UltraVNC 资源管理错误漏洞 — UltraVNCCWE-665 | 7.5 | - | 2019-03-05 |
| CVE-2019-8260 | UltraVNC 缓冲区错误漏洞 — UltraVNCCWE-125 | 9.8 | - | 2019-03-05 |
| CVE-2019-8261 | UltraVNC 缓冲区错误漏洞 — UltraVNCCWE-125 | 9.8 | - | 2019-03-05 |
| CVE-2019-8262 | UltraVNC 缓冲区错误漏洞 — UltraVNCCWE-122 | 9.8 | - | 2019-03-05 |
This page lists every published CVE security advisory associated with UltraVNC. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.