Lucene search
K

13 matches found

Cvelist
Cvelist
added yesterday15 views

CVE-2026-55827 FreeRDP: Heap out-of-bounds write in RemoteFX (RFX) Cache Bitmap V3 decode

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.27.1, FreeRDP clients launched with the non-default /cache:codec:rfx option pass desktop stride and height to RemoteFX decoding for Cache Bitmap V3 data while allocating bitmap-data only for the smaller DstWidth and...

7.5CVSS
Exploits0References4
Cvelist
Cvelist
added 2026/03/13 5:42 p.m.32 views

CVE-2026-31897 FreeRDP has an out-of-bounds read in `freerdp_bitmap_decompress_planar`

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, there is an out-of-bounds read in freerdpbitmapdecompressplanar when SrcSize is 0. The function dereferences srcp which points to pSrcData without first verifying that SrcSize = 1. When SrcSize is 0 and pSrcData is...

0.00285EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2026/03/13 5:42 p.m.11 views

CVE-2026-31897

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, there is an out-of-bounds read in freerdpbitmapdecompressplanar when SrcSize is 0. The function dereferences srcp which points to pSrcData without first verifying that SrcSize = 1. When SrcSize is 0 and pSrcData is...

5.8AI score0.00285EPSS
Exploits1References3Affected Software1
AlpineLinux
AlpineLinux
added 2026/03/13 5:42 p.m.4 views

CVE-2026-31897

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, there is an out-of-bounds read in freerdpbitmapdecompressplanar when SrcSize is 0. The function dereferences srcp which points to pSrcData without first verifying that SrcSize = 1. When SrcSize is 0 and pSrcData is...

9.1CVSS5.8AI score0.00285EPSS
Exploits1
CNNVD
CNNVD
added 2026/03/13 12:0 a.m.5 views

FreeRDP 缓冲区错误漏洞

FreeRDP is an open-source implementation of the Remote Desktop Protocol RDP by the FreeRDP team. Versions of FreeRDP prior to 3.24.0 contained a buffer error vulnerability. This vulnerability stemmed from the freerdpbitmapdecompressplanar function not verifying the buffer size when SrcSize was 0,...

9.1CVSS6AI score0.00285EPSS
Exploits1References3
CNNVD
CNNVD
added 2026/01/19 12:0 a.m.8 views

FreeRDP security vulnerabilities

FreeRDP is an open-source RDP protocol implementation developed by the FreeRDP team. Versions of FreeRDP prior to 3.21.0 contained security vulnerabilities. These vulnerabilities stemmed from the freerdpbitmapdecompressplanar function, which did not validate the nSrcWidth and nSrcHeight parameter...

9.8CVSS6.2AI score0.00443EPSS
Exploits1References7
Positive Technologies
Positive Technologies
added 2026/01/01 12:0 a.m.4 views

PT-2026-25341

Name of the Vulnerable Software and Affected Versions FreeRDP versions prior to 3.24.0 Description FreeRDP is a free implementation of the Remote Desktop Protocol. A flaw exists in the freerdp bitmap decompress planar function where an out-of-bounds read can occur when the SrcSize is 0. The...

9.8CVSS6AI score0.00656EPSS
Exploits15References56
BDU FSTEC
BDU FSTEC
added 2019/10/03 12:0 a.m.4 views

Vulnerability of the gdi_Bitmap_Decompress() function in the RDP client FreeRDP, allowing a hacker to cause a service failure or execute arbitrary code

The vulnerability of the gdiBitmapDecompress function in the FreeRDP RDP client is caused by a numerical overflow. Exploiting this vulnerability can allow an attacker to cause a service failure or execute arbitrary code...

10CVSS5.9AI score0.08357EPSS
Exploits1References8Affected Software4
RedHat Linux
RedHat Linux
added 2019/04/02 11:47 a.m.6 views

freerdp: Integer overflow leading to heap-based buffer overflow in gdi_Bitmap_Decompress() function

A flaw was found in freerdp in versions before versions 2.0.0-rc4. An integer overflow that leads to a heap-based buffer overflow in the gdiBitmapDecompress function leads to memory corruption. The highest threat from this vulnerability is to data confidentiality and integrity as well as system...

9.8CVSS5.9AI score0.08357EPSS
Exploits1References4
CNVD
CNVD
added 2018/11/30 12:0 a.m.1 views

FreeRDP Buffer Overflow Vulnerability

FreeRDP is a free, open source implementation of the Remote Desktop Protocol RDP developed by the FreeRDP team. A heap buffer overflow vulnerability exists in the 'gdiBitmapDecompress' function in versions prior to FreeRDP 2.0.0-rc4, which can be exploited by a remote attacker to cause a denial o...

9.8CVSS9.3AI score0.08357EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2018/11/29 6:29 p.m.16 views

CVE-2018-8787

FreeRDP prior to version 2.0.0-rc4 contains an Integer Overflow that leads to a Heap-Based Buffer Overflow in function gdiBitmapDecompress and results in a memory corruption and probably even a remote code execution...

9.8CVSS6.1AI score0.08357EPSS
Exploits1References11
OSV
OSV
added 2018/11/29 6:29 p.m.1 views

DEBIAN-CVE-2018-8787

FreeRDP prior to version 2.0.0-rc4 contains an Integer Overflow that leads to a Heap-Based Buffer Overflow in function gdiBitmapDecompress and results in a memory corruption and probably even a remote code execution...

9.8CVSS9AI score0.08357EPSS
Exploits1References1
OSV
OSV
added 2018/11/29 12:0 a.m.3 views

UBUNTU-CVE-2018-8787

FreeRDP prior to version 2.0.0-rc4 contains an Integer Overflow that leads to a Heap-Based Buffer Overflow in function gdiBitmapDecompress and results in a memory corruption and probably even a remote code execution...

9.8CVSS7.5AI score0.08357EPSS
Exploits1References5
Rows per page
Query Builder