Lucene search
K

19 matches found

Tenable Nessus
Tenable Nessus
added 2025/05/16 12:0 a.m.6 views

Debian dla-4166 : xrdp - security update

The remote Debian 11 host has a package installed that is affected by multiple vulnerabilities as referenced in the dla-4166 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-4166-1 [email protected]...

9.8CVSS6.2AI score0.00728EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2023-40184

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - xrdp is an open source remote desktop protocol RDP server. In versions prior to 0.9.23 improper handling of session establishment errors allows bypassing OS-lev...

6.5CVSS5.8AI score0.00728EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2024/03/04 12:0 a.m.18 views

openSUSE: Security Advisory for xrdp (SUSE-SU-2023:3830-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS5.5AI score0.00728EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/12/15 12:0 a.m.30 views

SUSE SLES12 Security Update : xrdp (SUSE-SU-2023:4873-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:4873-1 advisory. - CVE-2023-42822: Fixed unchecked access to font glyph info bsc1215803. - CVE-2023-40184: Fixed restriction bypass via improper...

6.5CVSS6.5AI score0.00728EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2023/11/07 12:0 a.m.19 views

Fedora 39 : xrdp (2023-5134642a68)

The remote Fedora 39 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-5134642a68 advisory. Release notes for xrdp v0.9.23 2023/08/31 General announcements - Running xrdp and xrdp-sesman on separate hosts is still supported by this release,...

6.5CVSS6AI score0.00728EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2023/10/02 12:0 a.m.17 views

Mageia: Security Advisory (MGASA-2023-0276)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.4AI score0.00728EPSS
Exploits0References4
OSV
OSV
added 2023/09/30 7:15 p.m.4 views

MGASA-2023-0276 Updated xrdp packages fix security vulnerability

In versions prior to 0.9.23 improper handling of session establishment errors allows bypassing OS-level session restrictions. The authstartsession function can return non-zero 1 value on, e.g., PAM error which may result in session restrictions such as max concurrent sessions per user by PAM ex...

6.5CVSS6.3AI score0.00728EPSS
Exploits0References4
OSV
OSV
added 2023/09/27 5:14 p.m.3 views

SUSE-SU-2023:3830-1 Security update for xrdp

This update for xrdp fixes the following issues: - CVE-2023-40184: Fixed restriction bypass via improper session handling bsc1214805...

6.5CVSS6.5AI score0.00728EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2023/09/27 12:0 a.m.19 views

FreeBSD : xrdp -- Improper handling of session establishment errors allows bypassing OS-level session restrictions (c9ff1150-5d63-11ee-bbae-1c61b4739ac9)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the c9ff1150-5d63-11ee-bbae-1c61b4739ac9 advisory. - xrdp is an open source remote desktop protocol RDP server. In versions prior to 0.9.23 improper...

6.5CVSS5.7AI score0.00728EPSS
Exploits0References4
OpenVAS
OpenVAS
added 2023/09/25 12:0 a.m.14 views

SUSE: Security Advisory (SUSE-SU-2023:3735-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.5AI score0.00728EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2023/09/23 12:0 a.m.21 views

SUSE SLES12 Security Update : xrdp (SUSE-SU-2023:3735-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2023:3735-1 advisory. - CVE-2023-40184: Fixed restriction bypass via improper session handling bsc1214805. Tenable has extracted the preceding description block...

6.5CVSS6.5AI score0.00728EPSS
Exploits0References4
OSV
OSV
added 2023/09/22 1:4 p.m.2 views

SUSE-SU-2023:3735-1 Security update for xrdp

This update for xrdp fixes the following issues: - CVE-2023-40184: Fixed restriction bypass via improper session handling bsc1214805...

6.5CVSS6.5AI score0.00728EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2023/09/10 12:0 a.m.30 views

Fedora 38 : xrdp (2023-b1d585e148)

The remote Fedora 38 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-b1d585e148 advisory. Release notes for xrdp v0.9.23 2023/08/31 General announcements - Running xrdp and xrdp-sesman on separate hosts is still supported by this release,...

6.5CVSS6AI score0.00728EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/09/10 12:0 a.m.24 views

Fedora 37 : xrdp (2023-40298f6951)

The remote Fedora 37 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-40298f6951 advisory. Release notes for xrdp v0.9.23 2023/08/31 General announcements - Running xrdp and xrdp-sesman on separate hosts is still supported by this release,...

6.5CVSS6AI score0.00728EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2023/09/01 2:7 a.m.4 views

SUSE CVE-2023-40184

xrdp is an open source remote desktop protocol RDP server. In versions prior to 0.9.23 improper handling of session establishment errors allows bypassing OS-level session restrictions. The authstartsession function can return non-zero 1 value on, e.g., PAM error which may result in in session...

4.8CVSS6.8AI score0.00728EPSS
Exploits0References6
Circl
Circl
added 2023/08/30 10:12 p.m.6 views

CVE-2023-40184

creationtimestamp| type| source ---|---|--- 2023-08-30 22:12:20+00:00| seen| https://t.me/cibsecurity/69482...

6.5CVSS5.3AI score0.00728EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2023/08/30 6:15 p.m.26 views

CVE-2023-40184

xrdp is an open source remote desktop protocol RDP server. In versions prior to 0.9.23 improper handling of session establishment errors allows bypassing OS-level session restrictions. The authstartsession function can return non-zero 1 value on, e.g., PAM error which may result in in session...

6.5CVSS6.3AI score0.00728EPSS
Exploits0References6
CVE
CVE
added 2023/08/30 5:48 p.m.166 views

CVE-2023-40184

CVE-2023-40184 affects xrdp, an open-source RDP server. In versions prior to 0.9.23, improper handling of session establishment errors can cause bypass of OS-level session restrictions because auth_start_session may return non-zero (e.g., on PAM error), potentially bypassing PAM limits for max co...

6.5CVSS5.2AI score0.00728EPSS
Exploits0References7Affected Software1
Vulnrichment
Vulnrichment
added 2023/08/30 5:48 p.m.17 views

CVE-2023-40184 Improper handling of session establishment errors in xrdp

xrdp is an open source remote desktop protocol RDP server. In versions prior to 0.9.23 improper handling of session establishment errors allows bypassing OS-level session restrictions. The authstartsession function can return non-zero 1 value on, e.g., PAM error which may result in in session...

2.6CVSS5.3AI score0.00728EPSS
Exploits0References6
Rows per page
Query Builder