CVE-2019-8264
First published: Fri Mar 01 2019(Updated: )
UltraVNC revision 1203 has out-of-bounds access vulnerability in VNC client inside Ultra2 decoder, which can potentially result in code execution. This attack appears to be exploitable via network connectivity. This vulnerability has been fixed in revision 1204.
Credit: vulnerability@kaspersky.com vulnerability@kaspersky.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| UltraVNC | <1.2.2.3 | |
| Siemens SINAMICS GH150 | ||
| Siemens SINAMICS GL150 Firmware | ||
| Siemens SINAMICS GM150 (with option X30) | ||
| Siemens SINAMICS SH150 firmware | ||
| Siemens SINAMICS SL150 | ||
| Siemens SINAMICS SM120 | ||
| Siemens SINAMICS SM150 Firmware | ||
| Siemens SINAMICS SM150i firmware | ||
| Siemens SIMATIC HMI Comfort Outdoor Panels 7’ and 15’ (incl. SIPLUS variants) Update 4 | <16 | 16 |
| Siemens SIMATIC HMI Comfort Panels | <16 | 16 |
| Siemens SIMATIC HMI Mobile Panels | <16 | 16 |
| Siemens SIMATIC WinCC Runtime Advanced | <16 | 16 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://cert-portal.siemens.com/productcert/pdf/ssa-286838.pdf
- https://cert-portal.siemens.com/productcert/pdf/ssa-927095.pdf
- https://cert-portal.siemens.com/productcert/pdf/ssa-940818.pdf
- https://ics-cert.kaspersky.com/advisories/klcert-advisories/2019/03/01/klcert-19-011-ultravnc-access-of-memory-location-after-end-of-buffer/
- https://us-cert.cisa.gov/ics/advisories/icsa-21-131-11
- https://www.us-cert.gov/ics/advisories/icsa-20-161-06
- https://www.cisa.gov/news-events/ics-advisories/icsa-21-131-04 (Advisory)
- https://www.cisa.gov/news-events/ics-advisories/icsa-21-131-11 (Advisory)
Frequently Asked Questions
What is the severity of CVE-2019-8264?
CVE-2019-8264 has been classified with a high severity due to its potential for remote code execution.
How do I fix CVE-2019-8264?
To mitigate CVE-2019-8264, update UltraVNC to revision 1204 or later.
What products are affected by CVE-2019-8264?
CVE-2019-8264 affects several Siemens SINAMICS products and UltraVNC versions up to 1.2.2.3.
Can CVE-2019-8264 be exploited remotely?
Yes, CVE-2019-8264 can be exploited remotely through network connectivity.
What coding issue does CVE-2019-8264 involve?
CVE-2019-8264 involves an out-of-bounds access vulnerability in the VNC client inside the Ultra2 decoder.
- agent/type
- agent/weakness
- agent/references
- agent/severity
- agent/description
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- agent/author
- agent/last-modified-date
- agent/event
- agent/trending
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- collector/nvd-index
- collector/ics-cert-advisory
- source/ICS
- vendor/uvnc
- canonical/ultravnc
- vendor/siemens
- canonical/siemens sinamics gh150
- canonical/siemens sinamics gl150 firmware
- canonical/siemens sinamics gm150 (with option x30)
- canonical/siemens sinamics sh150 firmware
- canonical/siemens sinamics sl150
- canonical/siemens sinamics sm120
- canonical/siemens sinamics sm150 firmware
- canonical/siemens sinamics sm150i firmware
- canonical/siemens simatic hmi comfort outdoor panels 7’ and 15’ (incl. siplus variants) update 4
- canonical/siemens simatic hmi comfort panels
- canonical/siemens simatic hmi mobile panels
- canonical/siemens simatic wincc runtime advanced