CVE-2019-8265
First published: Fri Mar 01 2019(Updated: )
UltraVNC revision 1207 has multiple out-of-bounds access vulnerabilities connected with improper usage of SETPIXELS macro in VNC client code, which can potentially result in code execution. This attack appears to be exploitable via network connectivity. These vulnerabilities have been fixed in revision 1208.
Credit: vulnerability@kaspersky.com vulnerability@kaspersky.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| UltraVNC | <1.2.2.3 | |
| Siemens SINAMICS GH150 | ||
| Siemens SINAMICS GL150 Firmware | ||
| Siemens SINAMICS GM150 (with option X30) | ||
| Siemens SINAMICS SH150 firmware | ||
| Siemens SINAMICS SL150 | ||
| Siemens SINAMICS SM120 | ||
| Siemens SINAMICS SM150 Firmware | ||
| Siemens SINAMICS SM150i firmware | ||
| Siemens SIMATIC HMI Comfort Outdoor Panels 7’ and 15’ (incl. SIPLUS variants) Update 4 | <16 | 16 |
| Siemens SIMATIC HMI Comfort Panels | <16 | 16 |
| Siemens SIMATIC HMI Mobile Panels | <16 | 16 |
| Siemens SIMATIC WinCC Runtime Advanced | <16 | 16 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://cert-portal.siemens.com/productcert/pdf/ssa-286838.pdf
- https://cert-portal.siemens.com/productcert/pdf/ssa-927095.pdf
- https://cert-portal.siemens.com/productcert/pdf/ssa-940818.pdf
- https://ics-cert.kaspersky.com/advisories/klcert-advisories/2019/03/01/klcert-19-012-ultravnc-access-of-memory-location-after-end-of-buffer/
- https://us-cert.cisa.gov/ics/advisories/icsa-21-131-11
- https://www.us-cert.gov/ics/advisories/icsa-20-161-06
- https://www.cisa.gov/news-events/ics-advisories/icsa-21-131-04 (Advisory)
- https://www.cisa.gov/news-events/ics-advisories/icsa-21-131-11 (Advisory)
Frequently Asked Questions
What is the severity of CVE-2019-8265?
CVE-2019-8265 has a high severity due to its potential for code execution via network connectivity.
How do I fix CVE-2019-8265?
To fix CVE-2019-8265, update affected software to the latest version as specified in the manufacturer's advisory.
Which products are affected by CVE-2019-8265?
CVE-2019-8265 affects multiple products, including UltraVNC versions up to 1.2.2.3 and various Siemens SIMATIC and SINAMICS devices.
Can CVE-2019-8265 be exploited remotely?
Yes, CVE-2019-8265 can potentially be exploited remotely due to its network connectivity vulnerabilities.
Is there a patch available for CVE-2019-8265?
Yes, patches are available for CVE-2019-8265 in the latest updates from affected software vendors.
- agent/type
- agent/weakness
- agent/references
- agent/severity
- agent/description
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- agent/author
- agent/last-modified-date
- agent/event
- agent/trending
- agent/source
- agent/tags
- agent/softwarecombine
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- collector/nvd-index
- collector/ics-cert-advisory
- source/ICS
- vendor/uvnc
- canonical/ultravnc
- vendor/siemens
- canonical/siemens sinamics gh150
- canonical/siemens sinamics gl150 firmware
- canonical/siemens sinamics gm150 (with option x30)
- canonical/siemens sinamics sh150 firmware
- canonical/siemens sinamics sl150
- canonical/siemens sinamics sm120
- canonical/siemens sinamics sm150 firmware
- canonical/siemens sinamics sm150i firmware
- canonical/siemens simatic hmi comfort outdoor panels 7’ and 15’ (incl. siplus variants) update 4
- canonical/siemens simatic hmi comfort panels
- canonical/siemens simatic hmi mobile panels
- canonical/siemens simatic wincc runtime advanced