Lucene search
K

2158 matches found

OSV
OSV
added 2026/03/10 6:18 p.m.5 views

CVE-2026-25190

Untrusted search path in Windows GDI allows an unauthorized attacker to execute code locally...

7.8CVSS5.9AI score0.00496EPSS
Exploits0References1
NVD
NVD
added 2026/03/10 6:18 p.m.4 views

CVE-2026-25190

Untrusted search path in Windows GDI allows an unauthorized attacker to execute code locally...

7.8CVSS0.00496EPSS
Exploits0References1
OSV
OSV
added 2026/03/10 6:18 p.m.5 views

CVE-2026-25181

Out-of-bounds read in Windows GDI+ allows an unauthorized attacker to disclose information over a network...

7.5CVSS5.8AI score0.01386EPSS
Exploits0References1
NVD
NVD
added 2026/03/10 6:18 p.m.6 views

CVE-2026-25181

Out-of-bounds read in Windows GDI+ allows an unauthorized attacker to disclose information over a network...

7.5CVSS0.01386EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/03/10 5:4 p.m.3 views

CVE-2026-25181 GDI+ Information Disclosure Vulnerability

...

7.5CVSS5.8AI score0.01386EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/03/10 5:4 p.m.2 views

CVE-2026-25181

Out-of-bounds read in Windows GDI+ allows an unauthorized attacker to disclose information over a network...

7.5CVSS5.7AI score0.01386EPSS
Exploits0References2Affected Software21
CVE
CVE
added 2026/03/10 5:4 p.m.38 views

CVE-2026-25181

CVE-2026-25181 is a Windows GDI+ out-of-bounds read vulnerability that allows an attacker to disclose information over the network. The CVE is referenced across NVD/NCSC/EUVD and is documented as a read past bounds in Windows GDI+. Impact described as high confidentiality loss with network-based,...

7.5CVSS5.7AI score0.01386EPSS
Exploits0References1Affected Software14
Cvelist
Cvelist
added 2026/03/10 5:4 p.m.26 views

CVE-2026-25181 GDI+ Information Disclosure Vulnerability

...

7.5CVSS0.01386EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/03/10 12:0 a.m.9 views

PT-2026-24308

Name of the Vulnerable Software and Affected Versions Microsoft Windows GDI+ affected versions not specified Description An out-of-bounds read issue exists in Windows GDI+. This can allow an attacker to potentially disclose information over a network. The issue is related to how GDI+ handles bitm...

7.8CVSS5.8AI score0.01386EPSS
Exploits0References11
CNNVD
CNNVD
added 2026/03/10 12:0 a.m.8 views

Microsoft Windows GDI 代码问题漏洞

Microsoft Windows GDI is a core underlying standard interface within the Windows operating system developed by Microsoft, responsible for drawing graphical objects on the screen or printer, managing fonts, and processing images. There are code vulnerabilities in Microsoft Windows GDI. Attackers c...

7.8CVSS5.9AI score0.00496EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/03/04 12:0 a.m.5 views

SUSE SLES12 Security Update : freerdp (SUSE-SU-2026:0762-1)

The remote SUSE Linux SLES12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:0762-1 advisory. - CVE-2026-22855: heap-buffer-overflow in smartcardunpacksetattribcall bsc1256721. - CVE-2026-22857: heap-use-after-free in irpthreadfunc...

9.8CVSS6.2AI score0.00756EPSS
Exploits5References34
SUSE Linux
SUSE Linux
added 2026/03/03 12:41 p.m.3 views

Security update for freerdp

This update for freerdp fixes the following issues: CVE-2026-22855: heap-buffer-overflow in smartcardunpacksetattribcall bsc1256721. CVE-2026-22857: heap-use-after-free in irpthreadfunc bsc1256723. CVE-2026-23533: improper validation can lead to heap buffer overflow in cleardecompressresidualdata...

7.7CVSS6.1AI score0.00756EPSS
Exploits5References44
OSV
OSV
added 2026/03/03 12:41 p.m.2 views

SUSE-SU-2026:0762-1 Security update for freerdp

This update for freerdp fixes the following issues: - CVE-2026-22855: heap-buffer-overflow in smartcardunpacksetattribcall bsc1256721. - CVE-2026-22857: heap-use-after-free in irpthreadfunc bsc1256723. - CVE-2026-23533: improper validation can lead to heap buffer overflow in...

9.8CVSS6.1AI score0.00756EPSS
Exploits5References23
SUSE Linux
SUSE Linux
added 2026/03/03 12:40 p.m.5 views

Security update for freerdp

This update for freerdp fixes the following issues: CVE-2026-22855: heap-buffer-overflow in smartcardunpacksetattribcall bsc1256721. CVE-2026-22857: heap-use-after-free in irpthreadfunc bsc1256723. CVE-2026-23533: improper validation can lead to heap buffer overflow in cleardecompressresidualdata...

7.7CVSS6.1AI score0.00756EPSS
Exploits6References24
OSV
OSV
added 2026/03/03 12:40 p.m.4 views

SUSE-SU-2026:0761-1 Security update for freerdp

This update for freerdp fixes the following issues: - CVE-2026-22855: heap-buffer-overflow in smartcardunpacksetattribcall bsc1256721. - CVE-2026-22857: heap-use-after-free in irpthreadfunc bsc1256723. - CVE-2026-23533: improper validation can lead to heap buffer overflow in...

9.8CVSS6.1AI score0.00756EPSS
Exploits6References13
Tenable Nessus
Tenable Nessus
added 2026/03/03 12:0 a.m.2 views

SUSE SLES15 Security Update : freerdp (SUSE-SU-2026:0656-1)

The remote SUSE Linux SLES15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:0656-1 advisory. - CVE-2026-22855: heap-buffer-overflow in smartcardunpacksetattribcall bsc1256721. - CVE-2026-22857: heap-use-after-free in irpthreadfunc...

9.8CVSS6.2AI score0.00756EPSS
Exploits6References19
SUSE CVE
SUSE CVE
added 2026/02/28 12:24 a.m.5 views

SUSE CVE-2026-26955

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, a malicious RDP server can trigger a heap buffer overflow in FreeRDP clients using the GDI surface pipeline e.g., xfreerdp by sending an RDPGFX ClearCodec surface command with an out-of-bounds destination...

8.8CVSS6.1AI score0.00537EPSS
Exploits1References14
OSV
OSV
added 2026/02/27 10:42 a.m.5 views

SUSE-SU-2026:0683-1 Security update for freerdp2

This update for freerdp2 fixes the following issues: - CVE-2026-22855: heap-buffer-overflow in smartcardunpacksetattribcall bsc1256721. - CVE-2026-22857: heap-use-after-free in irpthreadfunc bsc1256723. - CVE-2026-23533: improper validation can lead to heap buffer overflow in...

9.8CVSS6AI score0.00756EPSS
Exploits6References29
RedhatCVE
RedhatCVE
added 2026/02/26 10:34 p.m.6 views

CVE-2026-26955

A flaw was found in FreeRDP, a free implementation of the Remote Desktop Protocol RDP. A malicious RDP server can exploit a heap buffer overflow vulnerability by sending a specially crafted graphics command to a FreeRDP client. This allows the server to write data outside of its intended memory...

8.8CVSS6.5AI score0.00537EPSS
Exploits1References5
SUSE Linux
SUSE Linux
added 2026/02/26 3:6 p.m.4 views

Security update for freerdp

This update for freerdp fixes the following issues: CVE-2026-22855: heap-buffer-overflow in smartcardunpacksetattribcall bsc1256721. CVE-2026-22857: heap-use-after-free in irpthreadfunc bsc1256723. CVE-2026-23533: improper validation can lead to heap buffer overflow in cleardecompressresidualdata...

7.7CVSS5.7AI score0.00756EPSS
Exploits6References24
Rows per page
Query Builder