Lucene search
K

4 matches found

Tenable Nessus
Tenable Nessus
added 2026/06/22 12:0 a.m.7 views

Amazon Linux 2023 : freerdp, freerdp-devel, freerdp-libs (ALAS2023-2026-1822)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2026-1822 advisory. FreeRDP before 3.26.0 contains a heap-buffer-overflow vulnerability in gdiCacheToSurface that allows remote attackers to write out-of-bounds heap memory. The vulnerability occurs because...

9.8CVSS6.5AI score0.03472EPSS
Exploits4References10
OPENSUSE Linux
OPENSUSE Linux
added 2026/06/07 12:0 a.m.8 views

freerdp-3.26.0-3.1 on GA media (moderate)

freerdp-3.26.0-3.1 on GA media Announcement ID: openSUSE-SU-2026:10948-1 Rating: moderate Cross-References: CVE-2026-40033 CVE-2026-44420 CVE-2026-44421 CVE-2026-44422 CVE-2026-45700 CVSS scores: CVE-2026-40033 SUSE : 8.1 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2026-40033 SUSE : 9.2...

9.2CVSS5.5AI score0.03472EPSS
Exploits5
CVE
CVE
added 2026/05/29 7:40 p.m.63 views

CVE-2026-44421

CVE-2026-44421 affects FreeRDP prior to 3.26.0. A malicious RDP server can trigger a heap-buffer-overflow in the client via crafted RDPGFX PDUs in gdi_CacheToSurface, by validating a destination rectangle clamped to UINT16_MAX but copying using the original cacheEntry->width/height, causing a ...

8.8CVSS5.9AI score0.0042EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2026/05/29 7:40 p.m.38 views

CVE-2026-44421 FreeRDP RDPGFX CacheToSurface heap-buffer-overflow via clamped-rectangle validation bypass

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.26.0, a malicious RDP server can trigger a heap-buffer-overflow write in the FreeRDP client by sending crafted RDPGFX PDUs. The bug is in gdiCacheToSurface: it validates a destination rectangle that is clamped to UINT16MA...

8.8CVSS0.0042EPSS
Exploits1References1
Rows per page
Query Builder