Lucene search
K

42 matches found

BDU FSTEC
BDU FSTEC
added 2022/11/25 12:0 a.m.7 views

The vulnerability of the ZGFX decoder in the implementation of the remote desktop protocol FreeRDP allows a intruder to gain unauthorized access to protected information.

The vulnerability of the ZGFX decoder in the implementation of the remote desktop protocol FreeRDP stems from the operation of pushing the index range beyond the buffer boundaries when checking the index with a shift. Exploiting this vulnerability can allow an intruder to gain unauthorized access...

4.6CVSS6.1AI score0.00627EPSS
Exploits0References12Affected Software6
Veracode
Veracode
added 2022/11/24 10:40 a.m.25 views

Out Of Bound Reads

freerdp is vulnerable to out-of-bound reads. The vulnerability exists due to missing a range check for input offset index in ZGFX decoder which allows an attacker read out of bound data and send it back to the server...

4.6CVSS5.3AI score0.00627EPSS
Exploits0References8Affected Software1
Redos
Redos
added 2022/11/21 12:0 a.m.59 views

ROS-20221121-02

A vulnerability in the FreeRDP remote desktop protocol implementation is related to the fact that there is no range check for the input offset index in the ZGFX decoder. Exploitation of the vulnerability could allow an attacker acting remotely to read the associated data and attempt to decode it...

5.7CVSS5.7AI score0.00967EPSS
Exploits0
CNVD
CNVD
added 2022/11/18 12:0 a.m.32 views

FreeRDP Buffer Overflow Vulnerability (CNVD-2022-78857)

FreeRDP is an open source implementation of the Remote Desktop Protocol RDP from the FreeRDP team.FreeRDP suffers from a buffer overflow vulnerability that stems from an out-of-bounds read in the ZGFX decoder component. No detailed vulnerability details are currently available...

5.7CVSS4.3AI score0.00967EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2022/11/17 1:57 p.m.45 views

CVE-2022-39316

An out-of-bounds read vulnerability was found in the ZGFX decoder component of FreeRDP. A malicious server can trick a FreeRDP based client to read out-of-bound data and try to decode it. This will result in a crash, causing a denial of service...

4.8CVSS5.3AI score0.00967EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2022/11/17 1:56 p.m.32 views

CVE-2022-39317

An out-of-bounds read vulnerability was discovered in FreeRDP due to missing a range check for input offset index in the ZGFX decoder. A malicious server can trick a FreeRDP based client to read out-of-bound data and try to decode it, resulting in a crash...

3.7CVSS5.4AI score0.00627EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2022/11/17 12:0 a.m.23 views

CVE-2022-39316

FreeRDP is a free remote desktop protocol library and clients. In affected versions there is an out of bound read in ZGFX decoder component of FreeRDP. A malicious server can trick a FreeRDP based client to read out of bound data and try to decode it likely resulting in a crash. This issue has be...

5.7CVSS6.1AI score0.00967EPSS
Exploits0References3
OSV
OSV
added 2022/11/17 12:0 a.m.1 views

UBUNTU-CVE-2022-39316

FreeRDP is a free remote desktop protocol library and clients. In affected versions there is an out of bound read in ZGFX decoder component of FreeRDP. A malicious server can trick a FreeRDP based client to read out of bound data and try to decode it likely resulting in a crash. This issue has be...

5.7CVSS6AI score0.00967EPSS
Exploits0References4
UbuntuCve
UbuntuCve
added 2022/11/17 12:0 a.m.37 views

CVE-2022-39317

FreeRDP is a free remote desktop protocol library and clients. Affected versions of FreeRDP are missing a range check for input offset index in ZGFX decoder. A malicious server can trick a FreeRDP based client to read out of bound data and try to decode it. This issue has been addressed in versio...

4.6CVSS5.9AI score0.00627EPSS
Exploits0References3
NVD
NVD
added 2022/11/16 9:15 p.m.16 views

CVE-2022-39317

FreeRDP is a free remote desktop protocol library and clients. Affected versions of FreeRDP are missing a range check for input offset index in ZGFX decoder. A malicious server can trick a FreeRDP based client to read out of bound data and try to decode it. This issue has been addressed in versio...

4.6CVSS0.00627EPSS
Exploits0References4
OSV
OSV
added 2022/11/16 9:15 p.m.1 views

DEBIAN-CVE-2022-39317

FreeRDP is a free remote desktop protocol library and clients. Affected versions of FreeRDP are missing a range check for input offset index in ZGFX decoder. A malicious server can trick a FreeRDP based client to read out of bound data and try to decode it. This issue has been addressed in versio...

4.6CVSS5AI score0.00627EPSS
Exploits0References1
NVD
NVD
added 2022/11/16 8:15 p.m.22 views

CVE-2022-39316

FreeRDP is a free remote desktop protocol library and clients. In affected versions there is an out of bound read in ZGFX decoder component of FreeRDP. A malicious server can trick a FreeRDP based client to read out of bound data and try to decode it likely resulting in a crash. This issue has be...

5.7CVSS0.00967EPSS
Exploits0References7
Prion
Prion
added 2022/11/16 8:15 p.m.17 views

Design/Logic Flaw

FreeRDP is a free remote desktop protocol library and clients. In affected versions there is an out of bound read in ZGFX decoder component of FreeRDP. A malicious server can trick a FreeRDP based client to read out of bound data and try to decode it likely resulting in a crash. This issue has be...

3.5CVSS5.1AI score0.00967EPSS
Exploits0References6Affected Software2
CNNVD
CNNVD
added 2022/11/16 12:0 a.m.2 views

FreeRDP 缓冲区错误漏洞

FreeRDP is an open source implementation of the Remote Desktop Protocol RDP from the FreeRDP team.FreeRDP suffers from a buffer overflow vulnerability that stems from an out-of-bounds read in the ZGFX decoder component. No detailed vulnerability details are currently available...

5.7CVSS7.3AI score0.00967EPSS
Exploits0References12
CVE
CVE
added 2022/11/16 12:0 a.m.127 views

CVE-2022-39316

CVE-2022-39316 describes an out-of-bounds read in FreeRDP’s ZGFX decoder. Multiple connected advisories confirm the issue affects FreeRDP clients and note the root cause as an out-of-bounds read in ZGFX decoding, leading to potential crashes when processing data from a malicious server. The publi...

5.7CVSS6AI score0.00967EPSS
Exploits0References7Affected Software1
Cvelist
Cvelist
added 2022/11/16 12:0 a.m.27 views

CVE-2022-39316 Out of bound read in FreeRDP

FreeRDP is a free remote desktop protocol library and clients. In affected versions there is an out of bound read in ZGFX decoder component of FreeRDP. A malicious server can trick a FreeRDP based client to read out of bound data and try to decode it likely resulting in a crash. This issue has be...

4.8CVSS6AI score0.00967EPSS
Exploits0References6
OSV
OSV
added 2022/11/16 12:0 a.m.21 views

CVE-2022-39316 Out of bound read in FreeRDP

FreeRDP is a free remote desktop protocol library and clients. In affected versions there is an out of bound read in ZGFX decoder component of FreeRDP. A malicious server can trick a FreeRDP based client to read out of bound data and try to decode it likely resulting in a crash. This issue has be...

4.8CVSS5.3AI score0.00967EPSS
Exploits0References9
Debian CVE
Debian CVE
added 2022/11/16 12:0 a.m.22 views

CVE-2022-39316

FreeRDP is a free remote desktop protocol library and clients. In affected versions there is an out of bound read in ZGFX decoder component of FreeRDP. A malicious server can trick a FreeRDP based client to read out of bound data and try to decode it likely resulting in a crash. This issue has be...

5.7CVSS5.7AI score0.00967EPSS
Exploits0
Debian CVE
Debian CVE
added 2022/11/16 12:0 a.m.32 views

CVE-2022-39317

FreeRDP is a free remote desktop protocol library and clients. Affected versions of FreeRDP are missing a range check for input offset index in ZGFX decoder. A malicious server can trick a FreeRDP based client to read out of bound data and try to decode it. This issue has been addressed in versio...

4.6CVSS5.2AI score0.00627EPSS
Exploits0
AlpineLinux
AlpineLinux
added 2022/11/16 12:0 a.m.39 views

CVE-2022-39317

FreeRDP is a free remote desktop protocol library and clients. Affected versions of FreeRDP are missing a range check for input offset index in ZGFX decoder. A malicious server can trick a FreeRDP based client to read out of bound data and try to decode it. This issue has been addressed in versio...

4.6CVSS6.1AI score0.00627EPSS
Exploits0
Rows per page
Query Builder