Lucene search
K

217 matches found

Talos
Talos
added 2024/10/23 12:0 a.m.17 views

NVIDIA D3D10 Driver Shader Functionality MOV instruction out-of-bounds read vulnerability

Talos Vulnerability Report TALOS-2024-2015 NVIDIA D3D10 Driver Shader Functionality MOV instruction out-of-bounds read vulnerability October 23, 2024 CVE Number CVE-2024-0119 SUMMARY An out-of-bounds read vulnerability exists in the Shader Functionality functionality of NVIDIA D3D10 Driver 555.99...

7.8CVSS6.9AI score0.00415EPSS
Exploits0
Talos
Talos
added 2024/10/23 12:0 a.m.14 views

NVIDIA D3D10 Driver Shader Functionality out-of-bounds read vulnerability due to excessive loop iteration

Talos Vulnerability Report TALOS-2024-2013 NVIDIA D3D10 Driver Shader Functionality out-of-bounds read vulnerability due to excessive loop iteration October 23, 2024 CVE Number CVE-2024-0118 SUMMARY An out-of-bounds read vulnerability exists in the Shader Functionality functionality of NVIDIA D3D...

7.8CVSS6.8AI score0.00415EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/04/30 12:0 a.m.42 views

RHEL 9 : freerdp (RHSA-2024:2208)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:2208 advisory. FreeRDP is a free implementation of the Remote Desktop Protocol RDP, released under the Apache license. The xfreerdp client can connect to R...

9.8CVSS7AI score0.01529EPSS
Exploits12References29
SUSE CVE
SUSE CVE
added 2024/04/24 2:48 a.m.3 views

SUSE CVE-2024-32041

FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients that use a version of FreeRDP prior to 3.5.0 or 2.11.6 are vulnerable to out-of-bounds read. Versions 3.5.0 and 2.11.6 patch the issue. As a workaround, deactivate /gfx on by default, set /bpp or /rfx options...

5.3CVSS9.2AI score0.0195EPSS
Exploits1References6
SUSE CVE
SUSE CVE
added 2024/04/24 2:48 a.m.2 views

SUSE CVE-2024-32458

FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients that use a version of FreeRDP prior to 3.5.0 or 2.11.6 are vulnerable to out-of-bounds read. Versions 3.5.0 and 2.11.6 patch the issue. As a workaround, use /gfx or /rfx modes on by default, require server side...

5.3CVSS9.2AI score0.01958EPSS
Exploits0References6
OSV
OSV
added 2024/04/22 9:15 p.m.0 views

DEBIAN-CVE-2024-32458

FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients that use a version of FreeRDP prior to 3.5.0 or 2.11.6 are vulnerable to out-of-bounds read. Versions 3.5.0 and 2.11.6 patch the issue. As a workaround, use /gfx or /rfx modes on by default, require server side...

9.8CVSS8.5AI score0.01958EPSS
Exploits0References1
Talos
Talos
added 2024/02/29 12:0 a.m.28 views

NVIDIA D3D10 Driver Shader Functionality out-of-bounds read vulnerability

Talos Vulnerability Report TALOS-2023-1849 NVIDIA D3D10 Driver Shader Functionality out-of-bounds read vulnerability February 29, 2024 CVE Number CVE-2024-0071 SUMMARY An out-of-bounds read vulnerability exists in the Shader functionality of NVIDIA D3D10 Driver, Version 546.01, 31.0.15.4601. A...

7.8CVSS7.5AI score0.00381EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2023/09/02 1:54 a.m.2 views

SUSE CVE-2023-39351

FreeRDP is a free implementation of the Remote Desktop Protocol RDP, released under the Apache license. Affected versions of FreeRDP are subject to a Null Pointer Dereference leading a crash in the RemoteFX rfx handling. Inside the rfxprocessmessagetileset function, the program allocates tiles...

5.3CVSS7AI score0.01321EPSS
Exploits1References5
AlpineLinux
AlpineLinux
added 2023/08/31 8:15 p.m.32 views

CVE-2023-39351

FreeRDP is a free implementation of the Remote Desktop Protocol RDP, released under the Apache license. Affected versions of FreeRDP are subject to a Null Pointer Dereference leading a crash in the RemoteFX rfx handling. Inside the rfxprocessmessagetileset function, the program allocates tiles...

7.5CVSS7.1AI score0.01321EPSS
Exploits1
OSV
OSV
added 2023/08/31 8:15 p.m.1 views

DEBIAN-CVE-2023-39351

FreeRDP is a free implementation of the Remote Desktop Protocol RDP, released under the Apache license. Affected versions of FreeRDP are subject to a Null Pointer Dereference leading a crash in the RemoteFX rfx handling. Inside the rfxprocessmessagetileset function, the program allocates tiles...

7.5CVSS7.1AI score0.01321EPSS
Exploits1References1
Prion
Prion
added 2023/08/31 8:15 p.m.24 views

Null pointer dereference

FreeRDP is a free implementation of the Remote Desktop Protocol RDP, released under the Apache license. Affected versions of FreeRDP are subject to a Null Pointer Dereference leading a crash in the RemoteFX rfx handling. Inside the rfxprocessmessagetileset function, the program allocates tiles...

5CVSS8.4AI score0.01321EPSS
Exploits1References6Affected Software3
UbuntuCve
UbuntuCve
added 2023/08/31 8:15 p.m.27 views

CVE-2023-39351

FreeRDP is a free implementation of the Remote Desktop Protocol RDP, released under the Apache license. Affected versions of FreeRDP are subject to a Null Pointer Dereference leading a crash in the RemoteFX rfx handling. Inside the rfxprocessmessagetileset function, the program allocates tiles...

7.5CVSS6.6AI score0.01321EPSS
Exploits1References3
OSV
OSV
added 2023/08/31 8:15 p.m.1 views

UBUNTU-CVE-2023-39351

FreeRDP is a free implementation of the Remote Desktop Protocol RDP, released under the Apache license. Affected versions of FreeRDP are subject to a Null Pointer Dereference leading a crash in the RemoteFX rfx handling. Inside the rfxprocessmessagetileset function, the program allocates tiles...

7.5CVSS6.7AI score0.01321EPSS
Exploits1References4
CVE
CVE
added 2023/08/31 7:56 p.m.109 views

CVE-2023-39351

CVE-2023-39351 affects FreeRDP (RDP client/server library). The issue is a null pointer dereference in the RemoteFX (rfx) path: in rfx_process_message_tileset, tiles are allocated via rfx_allocate_tiles for numTiles, but if initialization fails some tiles remain NULL and may be accessed later, ca...

7.5CVSS7.2AI score0.01321EPSS
Exploits1References7Affected Software1
OSV
OSV
added 2023/08/31 7:56 p.m.22 views

CVE-2023-39351 FreeRDP Null Pointer Dereference leading denial of service

FreeRDP is a free implementation of the Remote Desktop Protocol RDP, released under the Apache license. Affected versions of FreeRDP are subject to a Null Pointer Dereference leading a crash in the RemoteFX rfx handling. Inside the rfxprocessmessagetileset function, the program allocates tiles...

5.3CVSS7.3AI score0.01321EPSS
Exploits1References9
Cvelist
Cvelist
added 2023/08/31 7:56 p.m.29 views

CVE-2023-39351 FreeRDP Null Pointer Dereference leading denial of service

FreeRDP is a free implementation of the Remote Desktop Protocol RDP, released under the Apache license. Affected versions of FreeRDP are subject to a Null Pointer Dereference leading a crash in the RemoteFX rfx handling. Inside the rfxprocessmessagetileset function, the program allocates tiles...

5.3CVSS8.8AI score0.01321EPSS
Exploits1References6
Talos Blog
Talos Blog
added 2023/08/23 4:56 p.m.65 views

Three vulnerabilities in NVIDIA graphics driver could cause memory corruption

Piotr Bania of Cisco Talos discovered the vulnerabilities mentioned in this post. Cisco Talos recently disclosed three vulnerabilities in the shader functionality of the NVIDIA D3D10 driver that works with NVIDIAs graphics cards. The driver is vulnerable to memory corruption if an adversary sends...

6.5CVSS7.1AI score0.01387EPSS
Exploits0
Talos
Talos
added 2022/12/06 12:0 a.m.38 views

NVIDIA D3D10 Driver Shader Functionality DCL_INDEXRANGE instruction memory corruption vulnerability

Talos Vulnerability Report TALOS-2022-1604 NVIDIA D3D10 Driver Shader Functionality DCLINDEXRANGE instruction memory corruption vulnerability December 6, 2022 CVE Number CVE-2022-34671 SUMMARY A memory corruption vulnerability exists in the Shader Functionality DCLINDEXRANGE instruction...

8.8CVSS8.8AI score0.01387EPSS
Exploits0
Talos
Talos
added 2022/12/06 12:0 a.m.43 views

NVIDIA D3D10 Driver Shader Functionality MOV instruction memory corruption vulnerability

Talos Vulnerability Report TALOS-2022-1603 NVIDIA D3D10 Driver Shader Functionality MOV instruction memory corruption vulnerability December 6, 2022 CVE Number CVE-2022-34671 SUMMARY A memory corruption vulnerability exists in the Shader Functionality MOV instruction index functionality of NVIDIA...

8.8CVSS8.8AI score0.01387EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2022/06/28 12:0 a.m.124 views

Microsoft Windows HyperV RemoteFX vGPU Multiple Vulnerabilities

The Microsoft HyperV RemoteFX vGPU enabled on the remote host is affected by multiple vulnerabilities, including the following: - An exploitable code execution vulnerability exists in the Shader functionality. An attacker can provide a specially crafted shader file to trigger this vulnerability,...

9.9CVSS9.1AI score0.06903EPSS
Exploits4References12
Rows per page
Query Builder