Out-of-bounds Read in Libvnc Libvncserver

CVE-2026-32853

LibVNCServer versions 0.9.15 and prior (fixed in commit 009008e) contain a heap out-of-bounds read vulnerability in the UltraZip encoding handler that allows a malicious VNC server to cause information disclosure or application crash. Atta…

Vulnerability class: Buffer Overflow

EPSS: 0.000 (7.2th percentile) — read the EPSS interpretation.

Affected products

Libvnc Libvncserver — versions 0, 009008e2f4d5a54dd71f422070df3af7b3dbc931

Weakness classification (CWE)

CWE-125 — Out-of-bounds Read

References

github.com/LibVNC/libvncserver/security/advisories/GHSA-87q7-v983-qwcj (vendor-advisory)
github.com/LibVNC/libvncserver/commit/009008e2f4d5a54dd71f422070df3af7b3dbc931 (patch)
www.vulncheck.com/advisories/libvncserver-ultrazip-encoding-heap-out-of-bounds-… (third-party-advisory)