CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

UbuntuCve•added 2026/04/17 9:16 p.m.•3 views

CVE-2026-33689

xrdp is an open source RDP server. Versions through 0.10.5 have an out-of-bounds read vulnerability in the pre-authentication RDP message parsing logic. A remote, unauthenticated attacker can trigger this flaw by sending a specially crafted sequence of packets during the initial connection phase...

9.1CVSS5.8AI score0.00484EPSS

UbuntuCve•added 2026/04/17 9:16 p.m.•2 views

CVE-2026-33145

xrdp is an open source RDP server. Versions through 0.10.5 allow an authenticated remote user to execute arbitrary commands on the server due to unsafe handling of the AlternateShell parameter in xrdp-sesman. When the AllowAlternateShell setting is enabled which is the default when not explicitly...

6.3CVSS6.2AI score0.00356EPSS

UbuntuCve•added 2026/04/17 8:16 p.m.•6 views

CVE-2026-35215

Firebird is an open-source relational database management system. In versions prior to 5.0.4, 4.0.7 and 3.0.14, the sdldesc function does not validate the length of a decoded SDL descriptor from a slice packet. A zero-length descriptor is later used to calculate the number of slice items, causing...

7.5CVSS5.8AI score0.00466EPSS

OSV•added 2026/04/17 8:16 p.m.•4 views

UBUNTU-CVE-2026-34232

Firebird is an open-source relational database management system. In versions prior to 5.0.4, 4.0.7 and 3.0.14, the xdrstatusvector function does not handle the iscargcstring type when decoding an opresponse packet, causing a server crash when one is encountered in the status vector. An...

7.5CVSS5.7AI score0.00466EPSS

UbuntuCve•added 2026/04/17 8:16 p.m.•8 views

CVE-2026-33516

xrdp is an open source RDP server. Versions through 0.10.5 contain an out-of-bounds read vulnerability during the RDP capability exchange phase. The issue occurs when memory is accessed before validating the remaining buffer length. A remote, unauthenticated attacker can trigger this vulnerabilit...

9.1CVSS5.8AI score0.00427EPSS

UbuntuCve•added 2026/04/17 8:16 p.m.•2 views

CVE-2026-40342

Firebird is an open-source relational database management system. In versions prior to 5.0.4, 4.0.7 and 3.0.14, the external engine plugin loader concatenates a user-supplied engine name into a filesystem path without filtering path separators or .. components. An authenticated user with CREATE...

9.9CVSS6.2AI score0.00692EPSS

UbuntuCve•added 2026/04/17 8:16 p.m.•7 views

CVE-2026-34232

7.5CVSS5.7AI score0.00466EPSS

UbuntuCve•added 2026/04/17 8:16 p.m.•3 views

CVE-2026-32107

xrdp is an open source RDP server. In versions through 0.10.5, the session execution component did not properly handle an error during the privilege drop process. This improper privilege management could allow an authenticated local attacker to escalate privileges to root and execute arbitrary co...

8.8CVSS5.8AI score0.00159EPSS

UbuntuCve•added 2026/04/17 8:16 p.m.•2 views

CVE-2026-32623

xrdp is an open source RDP server. Versions through 0.10.5 contain a heap-based buffer overflow vulnerability in the NeutrinoRDP module. When proxying RDP sessions from xrdp to another server, the module fails to properly validate the size of reassembled fragmented virtual channel data against it...

8.1CVSS6AI score0.00544EPSS

UbuntuCve•added 2026/04/17 8:16 p.m.•3 views

CVE-2026-32105

xrdp is an open source RDP server. In versions through 0.10.5, xrdp does not implement verification for the Message Authentication Code MAC signature of encrypted RDP packets when using the "Classic RDP Security" layer. While the sender correctly generates signatures, the receiving logic lacks th...

9.3CVSS5.8AI score0.00174EPSS

UbuntuCve•added 2026/04/17 8:16 p.m.•4 views

CVE-2026-32624

xrdp is an open source RDP server. Versions through 0.10.5 contain a heap-based buffer overflow vulnerability in its logon processing. In environments where domainuserseparator is configured in xrdp.ini, an unauthenticated remote attacker can send a crafted, excessively long username and domain...

6.5CVSS5.9AI score0.00408EPSS

OSV•added 2026/04/17 8:16 p.m.•2 views

UBUNTU-CVE-2026-35215

7.5CVSS5.7AI score0.00466EPSS

UbuntuCve•added 2026/04/17 7:16 p.m.•3 views

CVE-2026-33337

Firebird is an open-source relational database management system. In versions prior to 5.0.4, 4.0.7 and 3.0.14, when deserializing a slice packet, the xdrdatum function does not validate that a cstring length conforms to the slice descriptor bounds, allowing a cstring longer than the allocated...

7.5CVSS5.9AI score0.00543EPSS

OSV•added 2026/04/17 7:16 p.m.•0 views

UBUNTU-CVE-2026-33337

7.5CVSS5.9AI score0.00543EPSS

OSV•added 2026/04/17 7:16 p.m.•2 views

UBUNTU-CVE-2026-28214

Firebird is an open-source relational database management system. In versions prior to 5.0.4, 4.0.7 and 3.0.14, the ClumpletReader::getClumpletSize function can overflow the totalLength value when parsing a Wide type clumplet, causing an infinite loop. An authenticated user with INSERT privileges...

6.5CVSS5.8AI score0.01133EPSS

Debian CVE•added 2026/04/17 6:38 p.m.•2 views

CVE-2026-28224

Firebird is an open-source relational database management system. In versions prior to 5.0.4, 4.0.7 and 3.0.14, when the server receives an opcryptkeycallback packet without prior authentication, the portservercryptcallback handler is not initialized, resulting in a null pointer dereference and...

8.2CVSS5.2AI score0.00465EPSS

Exploits1

Debian CVE•added 2026/04/17 6:35 p.m.•2 views

CVE-2026-28214

6.5CVSS5.3AI score0.01133EPSS

Exploits1

UbuntuCve•added 2026/04/17 6:16 p.m.•2 views

CVE-2025-65104

Firebird is an open-source relational database management system. In versions FB3 of the client library placed incorrect data length values into XSQLDA fields when communicating with FB4 or higher servers, resulting in an information leak. This issue is fixed by upgrading to the FB4 client or...

7.9CVSS5.8AI score0.00185EPSS