Buffer Overflow Vulnerability in LibVNCClient Affects Multiple Versions
CVE-2026-44988

8.8HIGH

Key Information:

Vendor

Libvnc

Vendor
CVE Published:
27 May 2026

What is CVE-2026-44988?

LibVNCClient is a widely used library for implementing VNC clients. Versions 0.9.15 and earlier include a vulnerability where the Tight encoding decoder utilizes fixed-size 2048-pixel scratch buffers for the Gradient filter without properly validating the dimensions of the incoming Tight rectangles. A malicious VNC server can exploit this weakness by sending specially crafted FramebufferUpdate rectangles that exceed the fixed buffer sizes, leading to a buffer overflow when processed by a LibVNCClient-based client. This flaw has been addressed with specific code changes, enhancing the security of the library.

Affected Version(s)

libvncserver <= 0.9.15

References

CVSS V3.1

Score:
8.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.