Heap Out-of-Bounds Write Vulnerabilities in LibVNC by LibVNC
CVE-2018-20748
9.8CRITICAL
What is CVE-2018-20748?
LibVNC before version 0.9.12 contains multiple flaws related to heap out-of-bounds writes in the libvncclient component, specifically in the rfbproto.c file. The updates intended to address the vulnerabilities associated with CVE-2018-20019 were insufficient, leaving the systems susceptible to exploitation. Users of LibVNC are advised to update to the latest version to mitigate these vulnerabilities.
