2175 matches found
CVE-2026-50380
Heap-based buffer overflow in Windows GDI+ allows an unauthorized attacker to execute code over a network...
CVE-2026-54122
Heap-based buffer overflow in Windows GDI+ allows an unauthorized attacker to execute code locally...
CVE-2026-49796
Heap-based buffer overflow in Windows GDI+ allows an unauthorized attacker to execute code locally...
CVE-2026-50387
CVE-2026-50387 — Windows GDI Elevation of Privilege Affects: Windows GDI subsystem. The vulnerability is a stack-based buffer overflow in GDI that can be triggered by an authorized attacker to achieve local privilege escalation. Impact: Local elevation of privileges with a CVSS v3.1 base score of...
CVE-2026-50380
CVE-2026-50380 is a Windows GDI+ heap-based buffer overflow that enables a remote attacker to execute code over a network. The CVE is listed among highly critical Windows vulnerabilities in July 2026 patch advisories, with Microsoft updating GDI+ and related components in the July security releas...
CVE-2026-50380 Windows GDI+ Remote Code Execution Vulnerability
...
CVE-2026-49796 Windows GDI+ Remote Code Execution Vulnerability
...
CVE-2026-54122 Windows GDI+ Remote Code Execution Vulnerability
...
CVE-2026-54122 Windows GDI+ Remote Code Execution Vulnerability
...
Windows GDI+ Remote Code Execution Vulnerability
Heap-based buffer overflow in Windows GDI+ allows an unauthorized attacker to execute code locally...
Windows GDI Elevation of Privilege Vulnerability
Stack-based buffer overflow in Windows GDI allows an authorized attacker to elevate privileges locally...
PT-2026-58168
Name of the Vulnerable Software and Affected Versions Windows GDI+ affected versions not specified Description A heap-based buffer overflow exists in Windows GDI+, which allows an unauthorized attacker to execute code locally. This issue can lead to remote code execution RCE on PCs and servers wh...
CVE-2026-55827 FreeRDP: Heap out-of-bounds write in RemoteFX (RFX) Cache Bitmap V3 decode
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.27.1, FreeRDP clients launched with the non-default /cache:codec:rfx option pass desktop stride and height to RemoteFX decoding for Cache Bitmap V3 data while allocating bitmap-data only for the smaller DstWidth and...
freerdp: FreeRDP: Remote code execution via heap-buffer-overflow in gdi_CacheToSurface
A flaw was found in FreeRDP.If a user connects to a malicious Remote Desktop RDP server, a security flaw in FreeRDP could cause the application to crash or allow the server to run unauthorized code on the user's system...
ROS-20260707-73-0014
The vulnerability of the gdiCacheToSurface function in the RDP client FreeRDP is related to buffer overflow in dynamic memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code and cause a service failure by sending specially crafted RDPGFX packets...
Astra Linux – Vulnerability in freerdp3
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0, a client-side heap buffer overflow occurred in the gdiSurfaceToSurface path of the FreeRDP client due to a mismatch between destination rectangle clamping and the actual copy size. A malicious server can...
Astra Linux – Vulnerability in freerdp3
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0, deleting offscreen bitmaps caused gdi-drawing to point to freed memory, leading to UAF when related update packets arrived. A malicious server could trigger client-side use after the objects were freed,...
Astra Linux – Vulnerability in freerdp3
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.0, the gdisurfacebits function processed SURFACEBITSCOMMAND messages sent by the RDP server. When these commands were processed using NSCodec, the bmp.width and bmp.height values provided by the server were not...
ROS-20260624-73-0009
The vulnerability of the gdisurfacebits function in the RDP client of FreeRDP is related to buffer overflow in dynamic memory. Exploiting this vulnerability could allow a remote attacker to execute arbitrary code...
SUSE-SU-2026:22194-1 Security update for freerdp
This update for freerdp fixes the following issues Update to version 3.26.0: - CVE-2026-33982: heap-buffer-overflow READ vulnerability at 24 bytes before the allocation, in winpralignedoffsetrecalloc bsc1261222. - CVE-2026-33985: FreeRDP: Information disclosure via heap memory out of bounds read...