CVE-2026-3787
HIGHUltraVNC 1.6.4.0 - Untrusted Search Path in Windows Service
Title source: llmDescription
A weakness has been identified in UltraVNC 1.6.4.0 on Windows. This affects an unknown function in the library cryptbase.dll of the component Windows Service. This manipulation causes uncontrolled search path. The attack requires local access. A high degree of complexity is needed for the attack. The exploitability is reported as difficult. The vendor was contacted early about this disclosure but did not respond in any way.
References (4)
Core 4
Core References
Permissions Required, VDB Entry vdb-entry
https://vuldb.com/?id.349754
Permissions Required, VDB Entry signature
permissions-required
https://vuldb.com/?ctiid.349754
Permissions Required, VDB Entry third-party-advisory
https://vuldb.com/?submit.767257
Various Sources related
https://drive.google.com/file/d/14ixv_1i4D2VrZWyl4RKsvFcN1AMF_qNx/view
Scores
CVSS v3
7.0
EPSS
0.0017
EPSS Percentile
6.1%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
total
Details
CWE
CWE-426
CWE-427
Status
published
Products (1)
uvnc/ultravnc
1.6.4.0
Published
Mar 08, 2026
Tracked Since
Mar 09, 2026