CVE-2026-34352

EUVD-2026-16468
In TigerVNC before 1.16.2, Image.cxx in x0vncserver allows other users to observe or manipulate the screen contents, or cause an application crash, because of incorrect permissions.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
8.5 HIGH
LOCAL
LOW
NONE
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:L/A:L
Base Score
CVSS 3.x
EPSS Score
Percentile: 8%
Affected Products (NVD)
VendorProductVersion
tigervnctigervnc
𝑥
< 1.16.2
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
tigervnc
bookworm
no-dsa
bullseye
postponed
forky
vulnerable
sid
vulnerable
trixie
no-dsa
openSUSE logo
openSUSE / SLES Releases
openSUSE Product
Release
libXvnc-devel
suse enterprise server 15 SP4
1.10.1-150400.7.15.1
fixed
suse enterprise server 15 SP5
1.12.0-150500.4.3.1
fixed
suse enterprise server 15 SP6
1.13.1-150600.4.3.1
fixed
libXvnc1
suse enterprise desktop 15 SP7
1.14.1-150700.4.3.1
fixed
suse enterprise sap 15 SP7
1.14.1-150700.4.3.1
fixed
suse enterprise server 12 SP3
1.6.0-33.1
fixed
suse enterprise server 12 SP5
1.6.0-22.23.1
fixed
suse enterprise server 15 SP4
1.10.1-150400.7.15.1
fixed
suse enterprise server 15 SP5
1.12.0-150500.4.3.1
fixed
suse enterprise server 15 SP6
1.13.1-150600.4.3.1
fixed
suse enterprise server 15 SP7
1.14.1-150700.4.3.1
fixed
tigervnc
suse enterprise desktop 15 SP7
1.14.1-150700.4.3.1
fixed
suse enterprise sap 15 SP7
1.14.1-150700.4.3.1
fixed
suse enterprise server 12 SP3
1.6.0-33.1
fixed
suse enterprise server 12 SP5
1.6.0-22.23.1
fixed
suse enterprise server 15 SP4
1.10.1-150400.7.15.1
fixed
suse enterprise server 15 SP5
1.12.0-150500.4.3.1
fixed
suse enterprise server 15 SP6
1.13.1-150600.4.3.1
fixed
suse enterprise server 15 SP7
1.14.1-150700.4.3.1
fixed
xorg-x11-Xvnc
suse enterprise desktop 15 SP7
1.14.1-150700.4.3.1
fixed
suse enterprise sap 15 SP7
1.14.1-150700.4.3.1
fixed
suse enterprise server 12 SP3
1.6.0-33.1
fixed
suse enterprise server 12 SP5
1.6.0-22.23.1
fixed
suse enterprise server 15 SP4
1.10.1-150400.7.15.1
fixed
suse enterprise server 15 SP5
1.12.0-150500.4.3.1
fixed
suse enterprise server 15 SP6
1.13.1-150600.4.3.1
fixed
suse enterprise server 15 SP7
1.14.1-150700.4.3.1
fixed
xorg-x11-Xvnc-module
suse enterprise desktop 15 SP7
1.14.1-150700.4.3.1
fixed
suse enterprise sap 15 SP7
1.14.1-150700.4.3.1
fixed
suse enterprise server 15 SP4
1.10.1-150400.7.15.1
fixed
suse enterprise server 15 SP5
1.12.0-150500.4.3.1
fixed
suse enterprise server 15 SP6
1.13.1-150600.4.3.1
fixed
suse enterprise server 15 SP7
1.14.1-150700.4.3.1
fixed
xorg-x11-Xvnc-novnc
suse enterprise desktop 15 SP7
1.14.1-150700.4.3.1
fixed
suse enterprise sap 15 SP7
1.14.1-150700.4.3.1
fixed
suse enterprise server 15 SP4
1.10.1-150400.7.15.1
fixed
suse enterprise server 15 SP5
1.12.0-150500.4.3.1
fixed
suse enterprise server 15 SP6
1.13.1-150600.4.3.1
fixed
suse enterprise server 15 SP7
1.14.1-150700.4.3.1
fixed
Red Hat logo
Red Hat Enterprise Linux Releases
Red Hat Product
Release
tigervnc
RHEL 8
0:1.15.0-9.el8_10
fixed
RHEL 9
0:1.15.0-6.el9_7.1
fixed
tigervnc-icons
RHEL 8
0:1.15.0-9.el8_10
fixed
RHEL 9
0:1.15.0-6.el9_7.1
fixed
tigervnc-license
RHEL 8
0:1.15.0-9.el8_10
fixed
RHEL 9
0:1.15.0-6.el9_7.1
fixed
tigervnc-selinux
RHEL 8
0:1.15.0-9.el8_10
fixed
RHEL 9
0:1.15.0-6.el9_7.1
fixed
tigervnc-server
RHEL 8
0:1.15.0-9.el8_10
fixed
RHEL 9
0:1.15.0-6.el9_7.1
fixed
tigervnc-server-minimal
RHEL 8
0:1.15.0-9.el8_10
fixed
RHEL 9
0:1.15.0-6.el9_7.1
fixed
tigervnc-server-module
RHEL 8
0:1.15.0-9.el8_10
fixed
RHEL 9
0:1.15.0-6.el9_7.1
fixed
Common Weakness Enumeration
Vulnerability Media Exposure
References
https://github.com/TigerVNC/tigervnc/commit/0b5cab169d847789efa54459a87659d3fd484393
https://groups.google.com/g/tigervnc-announce/c/anHL9WLshLI
https://sourceforge.net/projects/tigervnc/files/stable/1.16.2
https://www.openwall.com/lists/oss-security/2026/03/26/7