Lucene search
K

5 matches found

OSV
OSV
added 2026/01/19 5:9 p.m.6 views

CVE-2026-23534 FreeRDP has heap-buffer-overflow in clear_decompress_bands_data

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0, a client-side heap buffer overflow occurs in the ClearCodec bands decode path when crafted band coordinates allow writes past the end of the destination surface buffer. A malicious server can trigger a...

8.7CVSS6.2AI score0.00434EPSS
Exploits1References15
CNVD
CNVD
added 2023/09/05 12:0 a.m.8 views

FreeRDP clear_decompress_bands_data function buffer overflow vulnerability

FreeRDP is an open source implementation of the Remote Desktop Protocol RDP from the FreeRDP team. FreeRDP suffers from a buffer overflow vulnerability that stems from the cleardecompressbandsdata function having no offset validation. An attacker could exploit this vulnerability to cause a denial...

9.8CVSS7.4AI score0.0127EPSS
Exploits1References1
BDU FSTEC
BDU FSTEC
added 2023/09/04 12:0 a.m.5 views

Vulnerability of the clear_decompress_bands_data() function in the RDP client FreeRDP, allowing a hacker to trigger a service failure

The vulnerability of the cleardecompressbandsdata function in the RDP client FreeRDP is related to the execution of operations outside the buffer boundaries in memory. Exploiting this vulnerability could allow a malicious actor to cause service failures remotely...

6.5CVSS7.5AI score0.0127EPSS
Exploits1References10Affected Software3
OSV
OSV
added 2023/08/31 10:15 p.m.3 views

DEBIAN-CVE-2023-40567

FreeRDP is a free implementation of the Remote Desktop Protocol RDP, released under the Apache license. Affected versions are subject to an Out-Of-Bounds Write in the cleardecompressbandsdata function in which there is no offset validation. Abuse of this vulnerability may lead to an out of bounds...

9.8CVSS7.3AI score0.0127EPSS
Exploits1References1
OSV
OSV
added 2023/08/31 10:15 p.m.7 views

UBUNTU-CVE-2023-40567

FreeRDP is a free implementation of the Remote Desktop Protocol RDP, released under the Apache license. Affected versions are subject to an Out-Of-Bounds Write in the cleardecompressbandsdata function in which there is no offset validation. Abuse of this vulnerability may lead to an out of bounds...

9.8CVSS6.9AI score0.0127EPSS
Exploits1References6
Rows per page
Query Builder