Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

RedHat Linux
RedHat Linuxadded 2026/02/16 1:12 p.m.4 views

freerdp: FreeRDP: Arbitrary code execution and denial of service via client-side heap buffer overflow

A flaw was found in FreeRDP, a free implementation of the Remote Desktop Protocol. A malicious server can trigger a client-side heap buffer overflow in the ClearCodec bands decode path. This vulnerability, caused by crafted band coordinates, allows writes past the end of the destination surface...

9.8CVSS6.2AI score0.00197EPSS
Exploits1References8
RedHat Linux
RedHat Linuxadded 2026/02/05 11:53 a.m.2 views

freerdp: FreeRDP: Arbitrary code execution and denial of service via client-side heap buffer overflow

A flaw was found in FreeRDP, a free implementation of the Remote Desktop Protocol. A malicious server can trigger a client-side heap buffer overflow in the ClearCodec bands decode path. This vulnerability, caused by crafted band coordinates, allows writes past the end of the destination surface...

9.8CVSS6.2AI score0.00197EPSS
Exploits1References8
RedhatCVE
RedhatCVEadded 2026/01/19 6:31 p.m.1 views

CVE-2026-23534

A flaw was found in FreeRDP, a free implementation of the Remote Desktop Protocol. A malicious server can trigger a client-side heap buffer overflow in the ClearCodec bands decode path. This vulnerability, caused by crafted band coordinates, allows writes past the end of the destination surface...

9.8CVSS6.1AI score0.00197EPSS
Exploits1References7
AlpineLinux
AlpineLinuxadded 2026/01/19 5:9 p.m.1 views

CVE-2026-23534

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0, a client-side heap buffer overflow occurs in the ClearCodec bands decode path when crafted band coordinates allow writes past the end of the destination surface buffer. A malicious server can trigger a...

9.8CVSS6AI score0.00197EPSS
Exploits1
CVE
CVEadded 2026/01/19 5:9 p.m.12 views

CVE-2026-23534

CVE-2026-23534 affects FreeRDP prior to version 3.21.0, where a client-side heap buffer overflow occurs in the ClearCodec bands decode path when crafted band coordinates allow writes past the end of the destination surface buffer. A malicious server can trigger this overflow, potentially crashing...

9.8CVSS5.9AI score0.00197EPSS
Exploits1References4Affected Software1
CNNVD
CNNVDadded 2026/01/19 12:0 a.m.2 views

FreeRDP security vulnerabilities

FreeRDP is an open-source RDP protocol implementation developed by the FreeRDP team. Versions of FreeRDP prior to 3.21.0 contained security vulnerabilities. These vulnerabilities stemmed from specially crafted band coordinates in the ClearCodec decoding path, which allowed writing beyond the targ...

9.8CVSS7.7AI score0.00197EPSS
Exploits1References6
Rows per page
Query Builder