Lucene search
K

22 matches found

RedhatCVE
RedhatCVE
added 6 days ago10 views

CVE-2026-55827

A flaw was found in FreeRDP. FreeRDP clients using the non-default /cache:codec:rfx option are vulnerable to a heap out-of-bounds write. A malicious Remote Desktop Protocol RDP server can exploit this by manipulating desktop stride and height values during RemoteFX decoding for Cache Bitmap V3...

8.8CVSS6.4AI score0.00526EPSS
Exploits1References7
OSV
OSV
added 6 days ago4 views

UBUNTU-CVE-2026-55827

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.27.1, FreeRDP clients launched with the non-default /cache:codec:rfx option pass desktop stride and height to RemoteFX decoding for Cache Bitmap V3 data while allocating bitmap-data only for the smaller DstWidth and...

8.8CVSS6.1AI score0.00526EPSS
Exploits1References3
Cvelist
Cvelist
added 6 days ago32 views

CVE-2026-55827 FreeRDP: Heap out-of-bounds write in RemoteFX (RFX) Cache Bitmap V3 decode

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.27.1, FreeRDP clients launched with the non-default /cache:codec:rfx option pass desktop stride and height to RemoteFX decoding for Cache Bitmap V3 data while allocating bitmap-data only for the smaller DstWidth and...

7.5CVSS0.00526EPSS
Exploits1References4
EUVD
EUVD
added 6 days ago6 views

EUVD-2026-43004

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.27.1, FreeRDP clients launched with the non-default /cache:codec:rfx option pass desktop stride and height to RemoteFX decoding for Cache Bitmap V3 data while allocating bitmap-data only for the smaller DstWidth and...

7.5CVSS6.1AI score0.00526EPSS
Exploits1References4
CVE
CVE
added 6 days ago21 views

CVE-2026-55827

CVE-2026-55827 affects FreeRDP prior to 3.27.1. When clients start with the non-default /cache:codec:rfx option, FreeRDP passes desktop stride/height to RemoteFX decoding for Cache Bitmap V3 data and allocates bitmap->data only for the smaller DstWidth/DstHeight in gdi_Bitmap_Decompress, enabl...

8.8CVSS6.1AI score0.00526EPSS
Exploits1References4Affected Software1
OSV
OSV
added 6 days ago3 views

CVE-2026-55827 FreeRDP: Heap out-of-bounds write in RemoteFX (RFX) Cache Bitmap V3 decode

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.27.1, FreeRDP clients launched with the non-default /cache:codec:rfx option pass desktop stride and height to RemoteFX decoding for Cache Bitmap V3 data while allocating bitmap-data only for the smaller DstWidth and...

7.5CVSS6.1AI score0.00526EPSS
Exploits1References6
AlpineLinux
AlpineLinux
added 6 days ago6 views

CVE-2026-55827

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.27.1, FreeRDP clients launched with the non-default /cache:codec:rfx option pass desktop stride and height to RemoteFX decoding for Cache Bitmap V3 data while allocating bitmap-data only for the smaller DstWidth and...

8.8CVSS6.1AI score0.00526EPSS
Exploits1
AstraLinux
AstraLinux
added 2026/06/24 3:11 p.m.5 views

Astra Linux – Vulnerability in freerdp3

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.0, a client-side heap out-of-bounds read/write occurred in FreeRDP’s bitmap cache subsystem due to an off-by-one boundary check in bitmapcacheput. A malicious server could send a CACHEBITMAPORDER Rev1 with a...

8.2CVSS5.8AI score0.00309EPSS
Exploits1References3
OSV
OSV
added 2026/03/27 2:3 p.m.5 views

OESA-2026-1716 freerdp security update

FreeRDP is a client implementation of the Remote Desktop Protocol RDP that follows Microsoft's open specifications. This package provides the client applications xfreerdp. Security Fixes: FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, Integer Underflow in...

3.1CVSS5.9AI score0.00175EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2026/03/27 12:0 a.m.2 views

Vulnerability of the `update_read_cache_bitmap_order()` function in the RDP client FreeRDP, allowing a hacker to trigger a service failure

The vulnerability of the updatereadcachebitmaporder function in the RDP client FreeRDP is related to integer overflow. Exploiting this vulnerability could allow a malicious actor to cause service failure...

3.1CVSS5.8AI score0.00175EPSS
Exploits0References8Affected Software6
OSV
OSV
added 2026/03/13 7:54 p.m.2 views

DEBIAN-CVE-2026-29776

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, Integer Underflow in updatereadcachebitmaporder Function of FreeRDP's Core Library This vulnerability is fixed in 3.24.0...

3.1CVSS4.6AI score0.00175EPSS
Exploits0References1
OSV
OSV
added 2026/03/13 7:54 p.m.6 views

UBUNTU-CVE-2026-29775

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, a client-side heap out-of-bounds read/write occurs in FreeRDP's bitmap cache subsystem due to an off-by-one boundary check in bitmapcacheput. A malicious server can send a CACHEBITMAPORDER Rev1 with cacheId equal to...

8.2CVSS5.8AI score0.00309EPSS
Exploits1References4
OSV
OSV
added 2026/03/13 7:54 p.m.5 views

UBUNTU-CVE-2026-29776

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, Integer Underflow in updatereadcachebitmaporder Function of FreeRDP's Core Library This vulnerability is fixed in 3.24.0...

3.1CVSS5.8AI score0.00175EPSS
Exploits0References4
Cvelist
Cvelist
added 2026/03/13 5:33 p.m.33 views

CVE-2026-29776 FreeRDP has an Integer Underflow in update_read_cache_bitmap_order Function of FreeRDP's Core Library

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, Integer Underflow in updatereadcachebitmaporder Function of FreeRDP's Core Library This vulnerability is fixed in 3.24.0...

3.1CVSS0.00175EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/03/13 5:28 p.m.18 views

CVE-2026-29775

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, a client-side heap out-of-bounds read/write occurs in FreeRDP's bitmap cache subsystem due to an off-by-one boundary check in bitmapcacheput. A malicious server can send a CACHEBITMAPORDER Rev1 with cacheId equal to...

5.3CVSS5.8AI score0.00309EPSS
Exploits1References3Affected Software1
Positive Technologies
Positive Technologies
added 2026/01/01 12:0 a.m.6 views

PT-2026-25333

Name of the Vulnerable Software and Affected Versions FreeRDP versions prior to 3.24.0 Description FreeRDP is a free implementation of the Remote Desktop Protocol. A client-side heap out-of-bounds read/write issue exists in FreeRDP's bitmap cache subsystem. This is due to an incorrect boundary...

8.2CVSS5.8AI score0.00486EPSS
Exploits3References90
BDU FSTEC
BDU FSTEC
added 2023/10/25 12:0 a.m.15 views

The vulnerability of the `update_read_cache_bitmap_v3_order` function in the RDP client FreeRDP allows a hacker to trigger a service failure.

The vulnerability of the updatereadcachebitmapv3order function in the RDP client FreeRDP is related to a memory reclamation error. Exploiting this vulnerability could allow a malicious actor to cause service interruptions remotely...

2.2CVSS6.7AI score0.01895EPSS
Exploits1References8Affected Software4
RedHat Linux
RedHat Linux
added 2020/11/04 1:25 a.m.6 views

freerdp: double free in update_read_cache_bitmap_v3_order function

In FreeRDP greater than 1.2 and before 2.0.0, a double free in updatereadcachebitmapv3order crashes the client application if corrupted data from a manipulated server is parsed. This has been patched in 2.0.0...

3.5CVSS5.7AI score0.01895EPSS
Exploits1References4
OSV
OSV
added 2020/06/22 10:15 p.m.18 views

UBUNTU-CVE-2020-11096

In FreeRDP before version 2.1.2, there is a global OOB read in updatereadcachebitmapv3order. As a workaround, one can disable bitmap cache with -bitmap-cache default. This is fixed in version 2.1.2...

6.5CVSS6.9AI score0.01837EPSS
Exploits0References5
OSV
OSV
added 2020/05/15 5:15 p.m.1 views

DEBIAN-CVE-2020-11525

libfreerdp/cache/bitmap.c in FreeRDP versions 1.0 through 2.0.0-rc4 has an Out of bounds read...

2.2CVSS6.8AI score0.0168EPSS
Exploits1References1
Rows per page
Query Builder