315 matches found
Astra Linux - уязвимость в freerdp2
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.5.1, a malicious server could crash the FreeRDP client by sending invalid huge allocation sizes. Version 3.5.1 includes a patch for this issue. There are no known workaround solutions available...
freerdp: FreeRDP has a heap-use-after-free in video_timer
A use after free flaw has been discovered in FreeRDP. The videotimer can send client notifications after the control channel is closed, dereferencing a freed callback and triggering a use after free. A malicious server can trigger a client‑side heap use after free causing a crash DoS...
CVE-2026-32157
Use after free in Remote Desktop Client allows an unauthorized attacker to execute code over a network...
Microsoft Patch Tuesday for April 2026 - Snort Rule and Prominent Vulnerabilities
Microsoft has released its monthly security update for April 2026, which includes 165 vulnerabilities affecting a wide range of products, including eight Microsoft marked as "critical." CVE-2026-23666 is a critical Denial of Service DoS vulnerability that affects the .NET framework. Successful...
EUVD-2026-22545
Use after free in Remote Desktop Client allows an unauthorized attacker to execute code over a network...
CVE-2026-32157
Use after free in Remote Desktop Client allows an unauthorized attacker to execute code over a network...
CVE-2026-32157
CVE-2026-32157 affects the Remote Desktop Client and enables remote code execution over the network. The CVSSv3.1 score is 8.8 (HIGH), with confidentiality, integrity, and availability all rated High. Attack requires network access and user interaction, with privilegesN/A and exploitation current...
CVE-2026-32157
Use after free in Remote Desktop Client allows an unauthorized attacker to execute code over a network...
CVE-2026-32157 Remote Desktop Client Remote Code Execution Vulnerability
...
CVE-2026-32157 Remote Desktop Client Remote Code Execution Vulnerability
...
Remote Desktop Client Remote Code Execution Vulnerability
Use after free in Remote Desktop Client allows an unauthorized attacker to execute code over a network...
KB5083769: Windows 11 Version 24H2 / Windows 11 Version 25H2 Security Update (April 2026)
The remote Windows host is missing security update 5083769. It is, therefore, affected by multiple vulnerabilities - Double free in Windows IKE Extension allows an unauthorized attacker to execute code over a network. CVE-2026-33824 - Protection mechanism failure in Windows Shell allows an...
KB5083768: Windows 11 Version 26H1 Security Update (April 2026)
The remote Windows host is missing security update 5083768. It is, therefore, affected by multiple vulnerabilities - Double free in Windows IKE Extension allows an unauthorized attacker to execute code over a network. CVE-2026-33824 - Protection mechanism failure in Windows Shell allows an...
Microsoft Remote Desktop Client 资源管理错误漏洞
Microsoft Remote Desktop Client is a remote desktop client developed by Microsoft Corporation. There is a resource management vulnerability in Microsoft Remote Desktop Client. Attackers can exploit this vulnerability to execute code. The following products and versions are affected: Windows 11...
KB5082060: Windows Server version 23H2 Security Update (April 2026)
The remote Windows host is missing security update 5082060. It is, therefore, affected by multiple vulnerabilities - Double free in Windows IKE Extension allows an unauthorized attacker to execute code over a network. CVE-2026-33824 - Protection mechanism failure in Windows Shell allows an...
PT-2026-32827
Name of the Vulnerable Software and Affected Versions Microsoft Remote Desktop client for Windows Desktop versions 1.2.0.0 through 2.0.1069.0 Description A use-after-free issue in the Microsoft Remote Desktop client for Windows Desktop allows an unauthorized attacker to achieve remote code...
KB5082052: Windows 11 version 23H2 Security Update (April 2026)
The remote Windows host is missing security update 5082052. It is, therefore, affected by multiple vulnerabilities - Double free in Windows IKE Extension allows an unauthorized attacker to execute code over a network. CVE-2026-33824 - Protection mechanism failure in Windows Shell allows an...
freerdp: FreeRDP has a heap-buffer-overflow in urb_select_interface
A heap buffer overflow has been discovered in FreeRDP. The URBDRC client uses server-supplied interface numbers as array indices without bounds checks, causing an out-of-bounds read in libusbudevselectinterface...
freerdp: FreeRDP: Arbitrary code execution via heap buffer overflow in GDI surface pipeline
A flaw was found in FreeRDP, a free implementation of the Remote Desktop Protocol RDP. A malicious RDP server can exploit a heap buffer overflow vulnerability by sending a specially crafted graphics command to a FreeRDP client. This allows the server to write data outside of its intended memory...
freerdp2-2.11.7-6.1 on GA media (moderate)
freerdp2-2.11.7-6.1 on GA media Announcement ID: openSUSE-SU-2026:10459-1 Rating: moderate Cross-References: CVE-2026-22855 CVE-2026-22857 CVE-2026-23533 CVE-2026-23732 CVE-2026-23883 CVE-2026-23884 CVE-2026-26271 CVE-2026-26955 CVE-2026-26965 CVE-2026-31806 CVE-2026-31883 CVE-2026-31885 CVSS...