Lucene search
K

5 matches found

AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.6 views

Astra Linux – Vulnerability in freerdp3

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, xfrailserverlocalmovesize dereferenced a freed xfAppWindow pointer because xfrailgetwindow returned an unprotected pointer from the railWindows hash table. This could allow the main thread to delete the wind...

7.5CVSS5.8AI score0.00486EPSS
Exploits1References2
Amazon
Amazon
added 2026/04/01 12:0 a.m.15 views

Important: freerdp

Issue Overview: FreeRDP is a free implementation of the Remote Desktop Protocol. Versions on the 2.x branch prior to to 2.11.8 and on the 3.x branch prior to 3.23.0 have an out-of-bounds read vulnerability in the FreeRDP client's RDPGFX channel that allows a malicious RDP server to read...

9.8CVSS6.3AI score0.00656EPSS
Exploits10
EUVD
EUVD
added 2026/02/25 8:30 p.m.5 views

EUVD-2026-8734

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, xfrailserverlocalmovesize dereferences a freed xfAppWindow pointer because xfrailgetwindow returns an unprotected pointer from the railWindows hash table, and the main thread can concurrently delete the wind...

6.9CVSS5.5AI score0.00486EPSS
Exploits1References8
CVE
CVE
added 2026/02/25 8:30 p.m.26 views

CVE-2026-25954

CVE-2026-25954 affects FreeRDP. The vulnerability arises in the RAIL path where xf_rail_get_window returns a pointer from the railWindows hash table that is freed by the main thread while the RAIL channel thread is still using it, allowing dereferencing of a freed xfAppWindow pointer. This race c...

7.5CVSS5.4AI score0.00486EPSS
Exploits1References8Affected Software1
Positive Technologies
Positive Technologies
added 2026/01/01 12:0 a.m.4 views

PT-2026-22011

Name of the Vulnerable Software and Affected Versions FreeRDP versions prior to 3.23.0 Description FreeRDP is a free implementation of the Remote Desktop Protocol. A flaw exists in the RAIL channel window management where the xf rail server local move size function dereferences a freed xfAppWindo...

9.8CVSS5.3AI score0.00756EPSS
Exploits27References99
Rows per page
Query Builder