Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6124 matches found

OSV
OSVadded 2022/11/18 11:4 a.m.1 views

OESA-2022-2101 exiv2 security update

Exiv2 is a Cross-platform C++ library and a command line utility to manage image metadata.It provides fast and easy read and write access to the Exif, IPTC and XMP metadata and the ICC Profile embedded within digital images in various formats. Security Fixes: A vulnerability was found in Exiv2 an...

7.2AI score
Exploits0References2
CNVD
CNVDadded 2022/11/18 12:0 a.m.30 views

FreeRDP Buffer Overflow Vulnerability (CNVD-2022-78857)

FreeRDP is an open source implementation of the Remote Desktop Protocol RDP from the FreeRDP team.FreeRDP suffers from a buffer overflow vulnerability that stems from an out-of-bounds read in the ZGFX decoder component. No detailed vulnerability details are currently available...

5.7CVSS4.3AI score0.0026EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2022/11/17 1:57 p.m.35 views

CVE-2022-39316

An out-of-bounds read vulnerability was found in the ZGFX decoder component of FreeRDP. A malicious server can trick a FreeRDP based client to read out-of-bound data and try to decode it. This will result in a crash, causing a denial of service...

4.8CVSS5.3AI score0.0026EPSS
Exploits0References4
RedhatCVE
RedhatCVEadded 2022/11/17 1:56 p.m.29 views

CVE-2022-39317

An out-of-bounds read vulnerability was discovered in FreeRDP due to missing a range check for input offset index in the ZGFX decoder. A malicious server can trick a FreeRDP based client to read out-of-bound data and try to decode it, resulting in a crash...

3.7CVSS5.4AI score0.0006EPSS
Exploits0References4
OSV
OSVadded 2022/11/17 12:0 a.m.0 views

UBUNTU-CVE-2022-39316

FreeRDP is a free remote desktop protocol library and clients. In affected versions there is an out of bound read in ZGFX decoder component of FreeRDP. A malicious server can trick a FreeRDP based client to read out of bound data and try to decode it likely resulting in a crash. This issue has be...

5.7CVSS6AI score0.0026EPSS
Exploits0References4
UbuntuCve
UbuntuCveadded 2022/11/17 12:0 a.m.20 views

CVE-2022-39316

FreeRDP is a free remote desktop protocol library and clients. In affected versions there is an out of bound read in ZGFX decoder component of FreeRDP. A malicious server can trick a FreeRDP based client to read out of bound data and try to decode it likely resulting in a crash. This issue has be...

5.7CVSS6.1AI score0.0026EPSS
Exploits0References3
OSV
OSVadded 2022/11/17 12:0 a.m.1 views

UBUNTU-CVE-2022-39317

FreeRDP is a free remote desktop protocol library and clients. Affected versions of FreeRDP are missing a range check for input offset index in ZGFX decoder. A malicious server can trick a FreeRDP based client to read out of bound data and try to decode it. This issue has been addressed in versio...

4.6CVSS5.8AI score0.0006EPSS
Exploits0References4
UbuntuCve
UbuntuCveadded 2022/11/17 12:0 a.m.35 views

CVE-2022-39317

FreeRDP is a free remote desktop protocol library and clients. Affected versions of FreeRDP are missing a range check for input offset index in ZGFX decoder. A malicious server can trick a FreeRDP based client to read out of bound data and try to decode it. This issue has been addressed in versio...

4.6CVSS5.9AI score0.0006EPSS
Exploits0References3
NVD
NVDadded 2022/11/16 9:15 p.m.12 views

CVE-2022-39317

FreeRDP is a free remote desktop protocol library and clients. Affected versions of FreeRDP are missing a range check for input offset index in ZGFX decoder. A malicious server can trick a FreeRDP based client to read out of bound data and try to decode it. This issue has been addressed in versio...

4.6CVSS0.0006EPSS
Exploits0References4
OSV
OSVadded 2022/11/16 9:15 p.m.1 views

DEBIAN-CVE-2022-39317

FreeRDP is a free remote desktop protocol library and clients. Affected versions of FreeRDP are missing a range check for input offset index in ZGFX decoder. A malicious server can trick a FreeRDP based client to read out of bound data and try to decode it. This issue has been addressed in versio...

4.6CVSS5AI score0.0006EPSS
Exploits0References1
OSV
OSVadded 2022/11/16 8:15 p.m.1 views

DEBIAN-CVE-2022-39316

FreeRDP is a free remote desktop protocol library and clients. In affected versions there is an out of bound read in ZGFX decoder component of FreeRDP. A malicious server can trick a FreeRDP based client to read out of bound data and try to decode it likely resulting in a crash. This issue has be...

5.7CVSS5.4AI score0.0026EPSS
Exploits0References1
NVD
NVDadded 2022/11/16 8:15 p.m.19 views

CVE-2022-39316

FreeRDP is a free remote desktop protocol library and clients. In affected versions there is an out of bound read in ZGFX decoder component of FreeRDP. A malicious server can trick a FreeRDP based client to read out of bound data and try to decode it likely resulting in a crash. This issue has be...

5.7CVSS0.0026EPSS
Exploits0References7
Prion
Prionadded 2022/11/16 8:15 p.m.12 views

Design/Logic Flaw

FreeRDP is a free remote desktop protocol library and clients. In affected versions there is an out of bound read in ZGFX decoder component of FreeRDP. A malicious server can trick a FreeRDP based client to read out of bound data and try to decode it likely resulting in a crash. This issue has be...

3.5CVSS5.1AI score0.0026EPSS
Exploits0References6Affected Software2
RedHat Linux
RedHat Linuxadded 2022/11/16 3:9 p.m.2 views

netty-codec: Bzip2Decoder doesn't allow setting size restrictions for decompressed data

A flaw was found in Netty's netty-codec due to size restrictions for decompressed data in the Bzip2Decoder. By sending a specially-crafted input, a remote attacker could cause a denial of service...

7.5CVSS7.4AI score0.01187EPSS
Exploits0References5
AlpineLinux
AlpineLinuxadded 2022/11/16 12:0 a.m.42 views

CVE-2022-39316

FreeRDP is a free remote desktop protocol library and clients. In affected versions there is an out of bound read in ZGFX decoder component of FreeRDP. A malicious server can trick a FreeRDP based client to read out of bound data and try to decode it likely resulting in a crash. This issue has be...

5.7CVSS6.3AI score0.0026EPSS
Exploits0
Cvelist
Cvelistadded 2022/11/16 12:0 a.m.23 views

CVE-2022-39316 Out of bound read in FreeRDP

FreeRDP is a free remote desktop protocol library and clients. In affected versions there is an out of bound read in ZGFX decoder component of FreeRDP. A malicious server can trick a FreeRDP based client to read out of bound data and try to decode it likely resulting in a crash. This issue has be...

4.8CVSS6AI score0.0026EPSS
Exploits0References6
AlpineLinux
AlpineLinuxadded 2022/11/16 12:0 a.m.38 views

CVE-2022-39317

FreeRDP is a free remote desktop protocol library and clients. Affected versions of FreeRDP are missing a range check for input offset index in ZGFX decoder. A malicious server can trick a FreeRDP based client to read out of bound data and try to decode it. This issue has been addressed in versio...

4.6CVSS6.1AI score0.0006EPSS
Exploits0
CVE
CVEadded 2022/11/16 12:0 a.m.122 views

CVE-2022-39316

CVE-2022-39316 describes an out-of-bounds read in FreeRDP’s ZGFX decoder. Multiple connected advisories confirm the issue affects FreeRDP clients and note the root cause as an out-of-bounds read in ZGFX decoding, leading to potential crashes when processing data from a malicious server. The publi...

5.7CVSS6AI score0.0026EPSS
Exploits0References7Affected Software1
Positive Technologies
Positive Technologiesadded 2022/11/16 12:0 a.m.2 views

PT-2022-5609 · Freerdp +10 · Freerdp +10

Name of the Vulnerable Software and Affected Versions: FreeRDP versions prior to 2.9.0 Description: The issue is related to a missing range check for input offset index in the ZGFX decoder of FreeRDP, allowing a malicious server to trick a FreeRDP-based client into reading out of bound data and...

9.8CVSS5.7AI score0.01266EPSS
Exploits1References110
CNNVD
CNNVDadded 2022/11/16 12:0 a.m.1 views

FreeRDP 缓冲区错误漏洞

FreeRDP is an open source implementation of the Remote Desktop Protocol RDP from the FreeRDP team.FreeRDP suffers from a buffer overflow vulnerability that stems from an out-of-bounds read in the ZGFX decoder component. No detailed vulnerability details are currently available...

5.7CVSS7.3AI score0.0026EPSS
Exploits0References12
Rows per page
Query Builder