Lucene search
K

744 matches found

Cvelist
Cvelist
added 2026/04/17 7:56 p.m.23 views

CVE-2026-33516 xrdp: Pre-authentication out-of-bounds reads in RDP capability and channel parsers

xrdp is an open source RDP server. Versions through 0.10.5 contain an out-of-bounds read vulnerability during the RDP capability exchange phase. The issue occurs when memory is accessed before validating the remaining buffer length. A remote, unauthenticated attacker can trigger this vulnerabilit...

7.7CVSS0.00427EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/04/17 7:56 p.m.4 views

CVE-2026-33516

xrdp is an open source RDP server. Versions through 0.10.5 contain an out-of-bounds read vulnerability during the RDP capability exchange phase. The issue occurs when memory is accessed before validating the remaining buffer length. A remote, unauthenticated attacker can trigger this vulnerabilit...

7.7CVSS5.8AI score0.00427EPSS
Exploits0References3Affected Software1
EUVD
EUVD
added 2026/04/17 7:56 p.m.5 views

EUVD-2026-23515

xrdp is an open source RDP server. Versions through 0.10.5 contain an out-of-bounds read vulnerability during the RDP capability exchange phase. The issue occurs when memory is accessed before validating the remaining buffer length. A remote, unauthenticated attacker can trigger this vulnerabilit...

7.7CVSS5.8AI score0.00427EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/04/17 7:56 p.m.5 views

CVE-2026-33516 xrdp: Pre-authentication out-of-bounds reads in RDP capability and channel parsers

xrdp is an open source RDP server. Versions through 0.10.5 contain an out-of-bounds read vulnerability during the RDP capability exchange phase. The issue occurs when memory is accessed before validating the remaining buffer length. A remote, unauthenticated attacker can trigger this vulnerabilit...

7.7CVSS5.8AI score0.00427EPSS
Exploits0References2
CVE
CVE
added 2026/04/17 7:56 p.m.21 views

CVE-2026-33516

CVE-2026-33516 affects xrdp (open source RDP server). Versions up to 0.10.5 contain an out-of-bounds read during the RDP capability exchange, triggered when memory is accessed before validating the remaining buffer length. A remote, unauthenticated attacker can exploit this by sending a crafted C...

9.1CVSS5.8AI score0.00427EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2026/04/17 7:43 p.m.9 views

CVE-2026-32623 xrdp: Heap buffer overflow in NeutrinoRDP channel reassembly

xrdp is an open source RDP server. Versions through 0.10.5 contain a heap-based buffer overflow vulnerability in the NeutrinoRDP module. When proxying RDP sessions from xrdp to another server, the module fails to properly validate the size of reassembled fragmented virtual channel data against it...

7.7CVSS6.1AI score0.00544EPSS
Exploits0References2
AlpineLinux
AlpineLinux
added 2026/04/17 7:43 p.m.4 views

CVE-2026-32623

xrdp is an open source RDP server. Versions through 0.10.5 contain a heap-based buffer overflow vulnerability in the NeutrinoRDP module. When proxying RDP sessions from xrdp to another server, the module fails to properly validate the size of reassembled fragmented virtual channel data against it...

8.1CVSS6AI score0.00544EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/04/17 7:43 p.m.3 views

CVE-2026-32623

xrdp is an open source RDP server. Versions through 0.10.5 contain a heap-based buffer overflow vulnerability in the NeutrinoRDP module. When proxying RDP sessions from xrdp to another server, the module fails to properly validate the size of reassembled fragmented virtual channel data against it...

7.7CVSS6.1AI score0.00544EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVE
added 2026/04/17 7:43 p.m.6 views

CVE-2026-32623

xrdp is an open source RDP server. Versions through 0.10.5 contain a heap-based buffer overflow vulnerability in the NeutrinoRDP module. When proxying RDP sessions from xrdp to another server, the module fails to properly validate the size of reassembled fragmented virtual channel data against it...

8.1CVSS5.9AI score0.00544EPSS
Exploits0
Cvelist
Cvelist
added 2026/04/17 7:27 p.m.21 views

CVE-2026-32105 xrdp: RDP MAC signature (dataSignature) never verified on receive — integrity bypass in non-TLS mode

xrdp is an open source RDP server. In versions through 0.10.5, xrdp does not implement verification for the Message Authentication Code MAC signature of encrypted RDP packets when using the "Classic RDP Security" layer. While the sender correctly generates signatures, the receiving logic lacks th...

9.3CVSS0.00174EPSS
Exploits0References2
AlpineLinux
AlpineLinux
added 2026/04/17 7:27 p.m.3 views

CVE-2026-32105

xrdp is an open source RDP server. In versions through 0.10.5, xrdp does not implement verification for the Message Authentication Code MAC signature of encrypted RDP packets when using the "Classic RDP Security" layer. While the sender correctly generates signatures, the receiving logic lacks th...

9.3CVSS5.6AI score0.00174EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/04/17 7:27 p.m.8 views

CVE-2026-32105

xrdp is an open source RDP server. In versions through 0.10.5, xrdp does not implement verification for the Message Authentication Code MAC signature of encrypted RDP packets when using the "Classic RDP Security" layer. While the sender correctly generates signatures, the receiving logic lacks th...

9.3CVSS5.6AI score0.00174EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2026/04/17 7:25 p.m.23 views

CVE-2026-32107 xrdp: Fail-open privilege drop in sesexec — child processes may execute as root if setuid fails

xrdp is an open source RDP server. In versions through 0.10.5, the session execution component did not properly handle an error during the privilege drop process. This improper privilege management could allow an authenticated local attacker to escalate privileges to root and execute arbitrary co...

8.8CVSS0.00159EPSS
Exploits0References2
AlpineLinux
AlpineLinux
added 2026/04/17 7:25 p.m.4 views

CVE-2026-32107

xrdp is an open source RDP server. In versions through 0.10.5, the session execution component did not properly handle an error during the privilege drop process. This improper privilege management could allow an authenticated local attacker to escalate privileges to root and execute arbitrary co...

8.8CVSS6.2AI score0.00159EPSS
Exploits0
ATTACKERKB
ATTACKERKB
added 2026/04/17 7:25 p.m.7 views

CVE-2026-32107

xrdp is an open source RDP server. In versions through 0.10.5, the session execution component did not properly handle an error during the privilege drop process. This improper privilege management could allow an authenticated local attacker to escalate privileges to root and execute arbitrary co...

8.8CVSS6.2AI score0.00159EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVE
added 2026/04/17 7:25 p.m.4 views

CVE-2026-32107

xrdp is an open source RDP server. In versions through 0.10.5, the session execution component did not properly handle an error during the privilege drop process. This improper privilege management could allow an authenticated local attacker to escalate privileges to root and execute arbitrary co...

8.8CVSS6.1AI score0.00159EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/04/17 12:0 a.m.9 views

PT-2026-33507

Name of the Vulnerable Software and Affected Versions xrdp versions prior to 0.10.6 Description An out-of-bounds read exists in the pre-authentication RDP message parsing logic. A remote, unauthenticated attacker can trigger this flaw by sending a specially crafted sequence of packets during the...

9.1CVSS5.9AI score0.00484EPSS
Exploits0References20
Positive Technologies
Positive Technologies
added 2026/04/17 12:0 a.m.5 views

PT-2026-33498

Name of the Vulnerable Software and Affected Versions xrdp versions prior to 0.10.6 Description A heap-based buffer overflow exists in the NeutrinoRDP module. When proxying RDP sessions to another server, the module does not properly validate the size of reassembled fragmented virtual channel dat...

10CVSS6AI score0.00544EPSS
Exploits0References20
CNNVD
CNNVD
added 2026/04/17 12:0 a.m.11 views

xrdp 安全漏洞

xrdp is an open-source remote desktop protocol server developed by Neutrinolabs. Versions of xrdp 0.10.5 and earlier contain security vulnerabilities. These vulnerabilities stem from the lack of verification of the message authentication code signature for encrypted RDP packets when the classic R...

9.3CVSS5.9AI score0.00174EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/04/17 12:0 a.m.12 views

xrdp 安全漏洞

XRDPT is an open-source remote desktop protocol server developed by Neutrinolabs. Versions of XRDPT prior to 0.10.5 contain security vulnerabilities. These vulnerabilities stem from the RDP message parsing logic before authentication, which involves out-of-bound reads. This could lead to...

9.1CVSS5.8AI score0.00484EPSS
Exploits0References1
Rows per page
Query Builder