Lucene search
+L

283 matches found

OSV
OSV
added 2026/02/09 7:15 p.m.4 views

UBUNTU-CVE-2026-24491

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, videotimer can send client notifications after the control channel is closed, dereferencing a freed callback and triggering a use after free. This vulnerability is fixed in 3.22.0...

8.7CVSS5.8AI score0.00467EPSS
Exploits0References4
CVE
CVE
added 2026/02/09 6:13 p.m.54 views

CVE-2026-24491

FreeRDP prior to 3.22.0 is affected by CVE-2026-24491: video_timer can send client notifications after the control channel is closed, dereferencing a freed callback and triggering a use-after-free. Affected: FreeRDP versions before 3.22.0. Impact: memory corruption and potential denial of service...

8.7CVSS5.6AI score0.00467EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/02/09 6:13 p.m.7 views

CVE-2026-24491

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, videotimer can send client notifications after the control channel is closed, dereferencing a freed callback and triggering a use after free. This vulnerability is fixed in 3.22.0...

8.7CVSS5.6AI score0.00467EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2026/02/09 6:13 p.m.34 views

CVE-2026-24491 FreeRDP has a heap-use-after-free in video_timer

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, videotimer can send client notifications after the control channel is closed, dereferencing a freed callback and triggering a use after free. This vulnerability is fixed in 3.22.0...

8.7CVSS0.00467EPSS
Exploits0References2
OSV
OSV
added 2026/02/09 6:13 p.m.4 views

CVE-2026-24491 FreeRDP has a heap-use-after-free in video_timer

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, videotimer can send client notifications after the control channel is closed, dereferencing a freed callback and triggering a use after free. This vulnerability is fixed in 3.22.0...

8.7CVSS5.6AI score0.00467EPSS
Exploits0References4
AlpineLinux
AlpineLinux
added 2026/02/09 6:13 p.m.2 views

CVE-2026-24491

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, videotimer can send client notifications after the control channel is closed, dereferencing a freed callback and triggering a use after free. This vulnerability is fixed in 3.22.0...

8.7CVSS5.6AI score0.00467EPSS
Exploits0
CNNVD
CNNVD
added 2026/02/09 12:0 a.m.7 views

FreeRDP 资源管理错误漏洞

FreeRDP is an open-source implementation of the Remote Desktop Protocol RDP by the FreeRDP team. Versions of FreeRDP prior to 3.22.0 contained a resource management vulnerability. This vulnerability stemmed from videotimer sending client notifications after the control channel was closed, which...

8.7CVSS5.8AI score0.00467EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.2 views

MiracleLinux 8 : bind-9.11.36-8.el8.2 (AXSA:2023-6475:09)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2023-6475:09 advisory. bind: stack exhaustion in control channel code may lead to DoS CVE-2023-3341 Tenable has extracted the preceding description block directly from the...

7.5CVSS7.6AI score0.02626EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/16 12:0 a.m.6 views

MiracleLinux 4 : bind-9.8.2-0.37.7.0.1.rc1.AXS4 (AXSA:2016-143:02)

"The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2016-143:02 advisory. BIND Berkeley Internet Name Domain is an implementation of the DNS Domain Name System protocols. BIND includes a DNS server named, which resolves ho...

8.6CVSS7AI score0.621EPSS
Exploits0References3
Oracle linux
Oracle linux
added 2026/01/06 12:0 a.m.13 views

bind security update

32:9.11.4-26.0.5.P2.16 - Resolve CVE-2025-40778 Orabug: 38699863 32:9.11.4-26.0.3.P2.16 - Resolve CVE-2024-11187 Orabug: 37616907 32:9.11.4-26.0.1.P2.16 - Resolve CVE-2024-1975 - Resolve CVE-2024-1737 - Add ability to change runtime limits for max types and records per name 32:9.11.4-26.P2.16 -...

8.6CVSS6.1AI score0.99995EPSS
Exploits2
Positive Technologies
Positive Technologies
added 2026/01/01 12:0 a.m.4 views

PT-2026-7033

Name of the Vulnerable Software and Affected Versions FreeRDP versions prior to 3.22.0 Description FreeRDP, a Remote Desktop Protocol implementation, contains a flaw where the video timer component may send client notifications after the control channel has been closed. This action can lead to a...

9.8CVSS5.3AI score0.0375EPSS
Exploits3References255
Wallarm Lab
Wallarm Lab
added 2025/11/26 12:0 p.m.7 views

When your AI Assistant Becomes the Attacker’s Command-and-Control

Earlier this month, Microsoft uncovered SesameOp, a new backdoor malware that abuses the OpenAI Assistants API as a covert command-and-control C2 channel. The discovery has drawn significant attention within the cybersecurity community. Security teams can no longer focus solely on endpoint malwar...

7.5AI score
Exploits0
The Hacker News
The Hacker News
added 2025/10/31 4:8 p.m.5 views

Nation-State Hackers Deploy New Airstalk Malware in Suspected Supply Chain Attack

A suspected nation-state threat actor has been linked to the distribution of a new malware called Airstalk as part of a likely supply chain attack. Palo Alto Networks Unit 42 said it's tracking the cluster under the moniker CL-STA-1009 , where "CL" stands for cluster and "STA" refers to...

6.5AI score
Exploits0
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2014-7951

Malware in sbrugna...

6.8CVSS6AI score0.03478EPSS
Exploits0References12
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2015-5317

Malware in sbrugna...

6.5CVSS6.4AI score0.00476EPSS
Exploits4References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-13593

Malware in sbrugna...

7.5CVSS7.4AI score0.00687EPSS
Exploits0References2
CloudLinux
CloudLinux
added 2025/10/03 10:4 a.m.8 views

openvpn: Fix of CVE-2020-15078

CVE-2020-15078: fix authentication bypass and access to control channel data on servers configured with deferred authentication...

7.5CVSS7.6AI score0.05107EPSS
Exploits0
OSV
OSV
added 2025/10/03 10:4 a.m.11 views

CLSA-2025-1759485890 openvpn: Fix of CVE-2020-15078

CVE-2020-15078: fix authentication bypass and access to control channel data on servers configured with deferred authentication...

7.5CVSS6.8AI score0.05107EPSS
Exploits0References1
OSV
OSV
added 2025/10/01 4:56 p.m.9 views

CLSA-2025-1759337779 openvpn: Fix of CVE-2020-15078

CVE-2020-15078: fix authentication bypass and access to control channel data on servers configured with deferred authentication...

7.5CVSS5.8AI score0.05107EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/08/09 12:0 a.m.4 views

Linux Distros Unpatched Vulnerability : CVE-2023-3341

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The code that processes control channel messages sent to named calls certain functions recursively during packet parsing. Recursion depth is only limited by the...

7.5CVSS7.8AI score0.02626EPSS
Exploits0References2
Rows per page
Query Builder