RHEL 10 : freerdp (RHSA-2026:2952)

The remote Redhat Enterprise Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:2952 advisory. FreeRDP is a free implementation of the Remote Desktop Protocol RDP, released under the Apache license. The xfreerdp client can connect to...

Important: Red Hat Security Advisory: freerdp security update

An update for freerdp is now available for Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

RHEL 9 : freerdp (RHSA-2026:2736)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:2736 advisory. FreeRDP is a free implementation of the Remote Desktop Protocol RDP, released under the Apache license. The xfreerdp client can connect to R...

freerdp security update

An update is available for freerdp. This update affects Rocky Linux 10. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list FreeRDP is a free implementation of the Remote Desktop Protocol RDP, release...

AlmaLinux 10 : freerdp (ALSA-2026:2222)

The remote AlmaLinux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2026:2222 advisory. freerdp: FreeRDP: Heap buffer overflow leading to denial of service and potential code execution from a malicious server. CVE-2026-23530 freerdp: FreeRDP...

Important: Red Hat Security Advisory: freerdp security update

An update for freerdp is now available for Red Hat Enterprise Linux 10. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from...

MiracleLinux 8 : freerdp-2.11.7-2.el8_10 (AXSA:2026-152:02)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2026-152:02 advisory. freerdp: FreeRDP: Heap buffer overflow leading to denial of service and potential code execution from a malicious server. CVE-2026-23530 freerdp:...

AlmaLinux 8 : freerdp (ALSA-2026:2081)

The remote AlmaLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2026:2081 advisory. freerdp: FreeRDP: Heap buffer overflow leading to denial of service and potential code execution from a malicious server. CVE-2026-23530 freerdp: FreeRDP:...

Important: Red Hat Security Advisory: freerdp security update

An update for freerdp is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from t...

Fedora: Security Advisory (FEDORA-2026-943caf40d9)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2026-23883

creationtimestamp| type| source ---|---|--- 2026-01-19 18:22:38+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mcsb5coesf2n...

DEBIAN-CVE-2026-23883

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0, xfPointerNew frees cursorPixels on failure, then pointerfree calls xfPointerFree and frees it again, triggering ASan UAF. A malicious server can trigger a client‑side use after free, causing a crash DoS and...

CVE-2026-23883

FreeRDP vulnerable: prior to 3.21.0, the xf_Pointer_New path frees cursorPixels on failure and then xf_Pointer_Free frees it again, causing a use-after-free (ASan UAF) that can crash the client and potentially enable heap-based code execution depending on allocator/heap layout. The issue affects ...

Linux Distros Unpatched Vulnerability : CVE-2026-23883

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0, xfPointerNew frees cursorPixels on failure, then pointerfree calls...

CVE-2025-23883

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in unalignedcoder Stray Random Quotes stray-quotes allows Reflected XSS.This issue affects Stray Random Quotes: from n/a through = 1.9.9...

CVE-2025-23883

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in unalignedcoder Stray Random Quotes stray-quotes allows Reflected XSS.This issue affects Stray Random Quotes: from n/a through = 1.9.9...

CVE-2025-23883

CVE-2025-23883 affects the WordPress Stray Random Quotes plugin (versions up to 1.9.9). The root cause is improper input neutralization during web page generation, enabling reflected XSS. Impact described in connected sources indicates potential for executing script in a victim’s browser. Public ...

CVE-2024-23883

creationtimestamp| type| source ---|---|--- 2024-02-19 13:51:19+00:00| seen| https://t.me/ctinow/187661...

CVE-2024-23883

CVE-2024-23883 affects Cups Easy (Purchase & Inventory) v1.0. The XSS vulnerability arises from insufficient encoding of user-controlled input in the description parameter of /cupseasylive/taxstructuremodify.php, allowing a remote attacker to craft a URL that, when visited by an authenticated use...

CVE-2024-23883 Cross-Site Scripting (XSS) vulnerability in Cups Easy

A vulnerability has been reported in Cups Easy Purchase & Inventory, version 1.0, whereby user-controlled inputs are not sufficiently encoded, resulting in a Cross-Site Scripting XSS vulnerability via /cupseasylive/taxstructuremodify.php, in the description parameter. Exploitation of this...