Lucene search
K

1730 matches found

RedHat Linux
RedHat Linux
added 2026/04/07 9:50 a.m.8 views

Important: Red Hat Security Advisory: freerdp security update

An update for freerdp is now available for Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions and Red Hat Enterprise Linux 8.8 Telecommunications Update Service. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring...

8.8CVSS6.6AI score0.00591EPSS
Exploits2References3
RedHat Linux
RedHat Linux
added 2026/04/07 7:47 a.m.11 views

freerdp: FreeRDP heap-buffer-overflow

A heap based buffer overflow has been discovered in FreeRDP. Prior to 3.20.1, a malicious RDP server can trigger a heap-buffer-overflow write in the FreeRDP client when processing Audio Input AUDIN format lists. audinprocessformats reuses callback-formatscount across multiple MSGSNDINFORMATS PDUs...

9.8CVSS6.1AI score0.00365EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2026/04/07 6:25 a.m.4 views

freerdp: FreeRDP heap-buffer-overflow

A heap based buffer overflow has been discovered in FreeRDP. Prior to 3.20.1, a malicious RDP server can trigger a heap-buffer-overflow write in the FreeRDP client when processing Audio Input AUDIN format lists. audinprocessformats reuses callback-formatscount across multiple MSGSNDINFORMATS PDUs...

9.8CVSS6.1AI score0.00365EPSS
Exploits1References6
OSV
OSV
added 2026/04/07 12:1 a.m.12 views

RLSA-2026:6005 Important: freerdp security update

FreeRDP is a free implementation of the Remote Desktop Protocol RDP, released under the Apache license. The xfreerdp client can connect to RDP servers such as Microsoft Windows machines, xrdp, and VirtualBox. Security Fixes: freerdp: FreeRDP: Arbitrary code execution via heap out-of-bounds write ...

8.8CVSS6.5AI score0.00591EPSS
Exploits2References3
RedHat Linux
RedHat Linux
added 2026/04/06 2:51 p.m.5 views

Important: Red Hat Security Advisory: freerdp security update

An update for freerdp is now available for Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions, and Red Hat Enterprise Linux 8.6 Telecommunications Update Service. Red Hat Product Security has rated this update as...

8.8CVSS6.6AI score0.00591EPSS
Exploits2References3
RedHat Linux
RedHat Linux
added 2026/04/06 3:31 a.m.5 views

freerdp: FreeRDP: Arbitrary code execution via heap buffer overflow in GDI surface pipeline

A flaw was found in FreeRDP, a free implementation of the Remote Desktop Protocol RDP. A malicious RDP server can exploit a heap buffer overflow vulnerability by sending a specially crafted graphics command to a FreeRDP client. This allows the server to write data outside of its intended memory...

8.8CVSS6.7AI score0.00537EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2026/04/06 12:0 a.m.4 views

RHEL 8 : freerdp (RHSA-2026:6712)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:6712 advisory. FreeRDP is a free implementation of the Remote Desktop Protocol RDP, released under the Apache license. The xfreerdp client can connect to R...

8.8CVSS6.6AI score0.00591EPSS
Exploits2References6
RedHat Linux
RedHat Linux
added 2026/04/01 3:1 p.m.12 views

freerdp: FreeRDP: Arbitrary code execution via heap out-of-bounds write in RLE planar decode path

A flaw was found in FreeRDP, a free implementation of the Remote Desktop Protocol RDP. A malicious RDP server can exploit a heap out-of-bounds write vulnerability in the planardecompressplanerle function. This vulnerability allows the server to write past the end of a temporary buffer, potentiall...

8.8CVSS6.4AI score0.00591EPSS
Exploits1References6
Amazon
Amazon
added 2026/04/01 12:0 a.m.9 views

Important: freerdp

Issue Overview: FreeRDP is a free implementation of the Remote Desktop Protocol. Versions on the 2.x branch prior to to 2.11.8 and on the 3.x branch prior to 3.23.0 have an out-of-bounds read vulnerability in the FreeRDP client's RDPGFX channel that allows a malicious RDP server to read...

9.8CVSS6.5AI score0.00656EPSS
Exploits12
SUSE CVE
SUSE CVE
added 2026/03/31 11:27 p.m.6 views

SUSE CVE-2026-33987

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, in persistentcachereadentryv3 in libfreerdp/cache/persistent.c, persistent-bmpSize is updated before winpralignedrecalloc. If realloc fails, bmpSize is inflated while bmpData points to the old buffer. This...

5.5CVSS5.8AI score0.001EPSS
Exploits0References7
RedhatCVE
RedhatCVE
added 2026/03/30 11:25 p.m.4 views

CVE-2026-33952

A flaw was found in FreeRDP, a free implementation of the Remote Desktop Protocol RDP. A remote attacker, by operating a malicious RDP Gateway, can exploit an unvalidated authentication length field. This can cause a FreeRDP client connecting through the gateway to crash, leading to a Denial of...

6.5CVSS5.8AI score0.00271EPSS
Exploits1References5
NVD
NVD
added 2026/03/30 10:16 p.m.3 views

CVE-2026-33986

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, in yuvensurebuffer in libfreerdp/codec/h264.c, h264-width and h264-height are updated before the reallocation loop. If any winpralignedrecalloc call fails, the function returns FALSE but width/height are...

7.5CVSS0.00265EPSS
Exploits0References5
CVE
CVE
added 2026/03/30 9:43 p.m.77 views

CVE-2026-33985

FreeRDP prior to version 3.24.2 is affected by a heap-based information disclosure (heap memory read) in pixel data handling, leading to potential leakage of sensitive data. The issue is patched in 3.24.2; upgrading to 3.24.2 or later is the recommended mitigation. No exploitation details are pro...

7.1CVSS5.8AI score0.00205EPSS
Exploits0References2Affected Software1
EUVD
EUVD
added 2026/03/30 9:42 p.m.4 views

EUVD-2026-17229

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, in resizevbarentry in libfreerdp/codec/clear.c, vBarEntry-size is updated to vBarEntry-count before the winpralignedrecalloc call. If realloc fails, size is inflated while pixels still points to the old,...

7.5CVSS6.1AI score0.00398EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/03/30 9:42 p.m.8 views

CVE-2026-33983

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, progressivedecompresstileupgrade detects a mismatch via progressiverfxquantcmpequal but only emits WLogWARN, execution continues. The wrapped value 247 is used as a shift exponent, causing undefined behavior...

7.5CVSS6AI score0.00426EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2026/03/30 9:42 p.m.28 views

CVE-2026-33982 FreeRDP: Persistent Cache Allocator Mismatch - Heap OOB Read

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, there is a heap-buffer-overflow READ vulnerability at 24 bytes before the allocation, in winpralignedoffsetrecalloc. This issue has been patched in version 3.24.2...

7.1CVSS0.00191EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/03/30 12:0 a.m.12 views

FreeRDP 安全漏洞

FreeRDP is an open-source RDP protocol implementation developed by the FreeRDP team. Versions of FreeRDP prior to 3.24.2 contained a security vulnerability. This vulnerability stemmed from the unvalidated network read of the authlength field, which could trigger assertion failures. This could cau...

6.5CVSS5.8AI score0.00271EPSS
Exploits1References3
AlmaLinux
AlmaLinux
added 2026/03/30 12:0 a.m.8 views

Important: freerdp security update

FreeRDP is a free implementation of the Remote Desktop Protocol RDP, released under the Apache license. The xfreerdp client can connect to RDP servers such as Microsoft Windows machines, xrdp, and VirtualBox. Security Fixes: freerdp: FreeRDP: Arbitrary code execution via heap out-of-bounds write ...

8.8CVSS6.5AI score0.00591EPSS
Exploits2References6
BDU FSTEC
BDU FSTEC
added 2026/03/27 12:0 a.m.3 views

The vulnerability of the RDP client FreeRDP arises from the issue of operations going beyond the buffer in memory due to incorrect validation of input data. This allows an intruder to gain unauthorized access to protected information.

The vulnerability of the RDP client FreeRDP arises from the escape of operations beyond the buffer in memory due to incorrect validation of input data. Exploiting this vulnerability can allow an attacker operating remotely to gain unauthorized access to protected information...

9.4CVSS6.1AI score0.00284EPSS
Exploits1References5Affected Software2
RedHat Linux
RedHat Linux
added 2026/03/26 11:40 a.m.6 views

Important: Red Hat Security Advisory: freerdp security update

An update for freerdp is now available for Red Hat Enterprise Linux 10.0 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available fo...

8.8CVSS6.5AI score0.00591EPSS
Exploits2References3
Rows per page
Query Builder