Lucene search
+L

558 matches found

RedHat Linux
RedHat Linux
added 2026/04/01 4:24 p.m.7 views

freerdp: FreeRDP: Arbitrary code execution via heap out-of-bounds write in RLE planar decode path

A flaw was found in FreeRDP, a free implementation of the Remote Desktop Protocol RDP. A malicious RDP server can exploit a heap out-of-bounds write vulnerability in the planardecompressplanerle function. This vulnerability allows the server to write past the end of a temporary buffer, potentiall...

8.8CVSS6.4AI score0.00591EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2026/03/30 11:2 a.m.2 views

freerdp: FreeRDP: Arbitrary code execution via heap out-of-bounds write in RLE planar decode path

A flaw was found in FreeRDP, a free implementation of the Remote Desktop Protocol RDP. A malicious RDP server can exploit a heap out-of-bounds write vulnerability in the planardecompressplanerle function. This vulnerability allows the server to write past the end of a temporary buffer, potentiall...

8.8CVSS6.4AI score0.00591EPSS
Exploits1References6
RedhatCVE
RedhatCVE
added 2026/03/26 3:19 p.m.5 views

CVE-2025-61154

Heap buffer overflow vulnerability in LibreDWG versions v0.13.3.7571 up to v0.13.3.7835 allows a crafted DWG file to cause a Denial of Service DoS via the function decompressR2004section at decode.c...

6.5CVSS6AI score0.00218EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2026/03/16 12:0 a.m.5 views

EulerOS 2.0 SP10 : python-urllib3 (EulerOS-SA-2026-1322)

According to the versions of the python-urllib3 package installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : urllib3 is an HTTP client library for Python. urllib3's streaming API is designed for the efficient handling of large HTTP responses by...

8.9CVSS6.5AI score0.02667EPSS
Exploits0References4
OSV
OSV
added 2026/03/13 8:56 p.m.3 views

GHSA-J47W-4G3G-C36V file-type: ZIP Decompression Bomb DoS via [Content_Types].xml entry

Summary A crafted ZIP file can trigger excessive memory growth during type detection in file-type when using fileTypeFromBuffer, fileTypeFromBlob, or fileTypeFromFile. In affected versions, the ZIP inflate output limit is enforced for stream-based detection, but not for known-size inputs. As a...

5.3CVSS5.9AI score0.00299EPSS
Exploits1References6
OSV
OSV
added 2026/03/13 7:54 p.m.2 views

DEBIAN-CVE-2026-31897

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, there is an out-of-bounds read in freerdpbitmapdecompressplanar when SrcSize is 0. The function dereferences srcp which points to pSrcData without first verifying that SrcSize = 1. When SrcSize is 0 and pSrcData is...

9.1CVSS4.6AI score0.00285EPSS
Exploits1References1
AlpineLinux
AlpineLinux
added 2026/03/13 5:42 p.m.4 views

CVE-2026-31897

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, there is an out-of-bounds read in freerdpbitmapdecompressplanar when SrcSize is 0. The function dereferences srcp which points to pSrcData without first verifying that SrcSize = 1. When SrcSize is 0 and pSrcData is...

9.1CVSS5.8AI score0.00285EPSS
Exploits1
ATTACKERKB
ATTACKERKB
added 2026/03/13 5:42 p.m.11 views

CVE-2026-31897

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, there is an out-of-bounds read in freerdpbitmapdecompressplanar when SrcSize is 0. The function dereferences srcp which points to pSrcData without first verifying that SrcSize = 1. When SrcSize is 0 and pSrcData is...

5.8AI score0.00285EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2026/03/13 5:42 p.m.34 views

CVE-2026-31897 FreeRDP has an out-of-bounds read in `freerdp_bitmap_decompress_planar`

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, there is an out-of-bounds read in freerdpbitmapdecompressplanar when SrcSize is 0. The function dereferences srcp which points to pSrcData without first verifying that SrcSize = 1. When SrcSize is 0 and pSrcData is...

0.00285EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2026/03/13 5:42 p.m.4 views

CVE-2026-31897 FreeRDP has an out-of-bounds read in `freerdp_bitmap_decompress_planar`

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, there is an out-of-bounds read in freerdpbitmapdecompressplanar when SrcSize is 0. The function dereferences srcp which points to pSrcData without first verifying that SrcSize = 1. When SrcSize is 0 and pSrcData is...

5.8AI score0.00285EPSS
Exploits1References2
CNNVD
CNNVD
added 2026/03/13 12:0 a.m.6 views

FreeRDP 缓冲区错误漏洞

FreeRDP is an open-source implementation of the Remote Desktop Protocol RDP by the FreeRDP team. Versions of FreeRDP prior to 3.24.0 contained a buffer error vulnerability. This vulnerability stemmed from the freerdpbitmapdecompressplanar function not verifying the buffer size when SrcSize was 0,...

9.1CVSS6AI score0.00285EPSS
Exploits1References3
EUVD
EUVD
added 2026/03/12 9:34 p.m.6 views

EUVD-2025-208617

Heap buffer overflow vulnerability in LibreDWG versions v0.13.3.7571 up to v0.13.3.7835 allows a crafted DWG file to cause a Denial of Service DoS via the function decompressR2004section at decode.c...

6AI score0.00218EPSS
Exploits0References3
OSV
OSV
added 2026/03/12 9:16 p.m.4 views

UBUNTU-CVE-2026-1526

The undici WebSocket client is vulnerable to a denial-of-service attack via unbounded memory consumption during permessage-deflate decompression. When a WebSocket connection negotiates the permessage-deflate extension, the client decompresses incoming compressed frames without enforcing any limit...

7.5CVSS5.8AI score0.0115EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/03/12 12:0 a.m.7 views

libredwg 安全漏洞

libredwg is an open-source DWG file format processing library developed by LibreDWG. Versions of libredwg from v0.13.3.7571 to v0.13.3.7835 contain security vulnerabilities. These vulnerabilities stem from a heap buffer overflow in the decompressR2004section function found in the decode.c file,...

6.5CVSS5.9AI score0.00218EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/03/12 12:0 a.m.2 views

CVE-2025-61154

Heap buffer overflow vulnerability in LibreDWG versions v0.13.3.7571 up to v0.13.3.7835 allows a crafted DWG file to cause a Denial of Service DoS via the function decompressR2004section at decode.c...

6AI score0.00218EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/03/12 12:0 a.m.2 views

CVE-2025-61154

Heap buffer overflow vulnerability in LibreDWG versions v0.13.3.7571 up to v0.13.3.7835 allows a crafted DWG file to cause a Denial of Service DoS via the function decompressR2004section at decode.c...

6AI score0.00218EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/03/12 12:0 a.m.30 views

CVE-2025-61154

Heap buffer overflow vulnerability in LibreDWG versions v0.13.3.7571 up to v0.13.3.7835 allows a crafted DWG file to cause a Denial of Service DoS via the function decompressR2004section at decode.c...

0.00218EPSS
Exploits0References2
OSV
OSV
added 2026/03/06 12:43 p.m.12 views

OESA-2026-1521 freerdp security update

FreeRDP is a client implementation of the Remote Desktop Protocol RDP that follows Microsoft's open specifications. This package provides the client applications xfreerdp. Security Fixes: A malicious server can trigger a client-side heap buffer overflow, causing a crash DoS and potential heap...

9.8CVSS6.4AI score0.00756EPSS
Exploits17References27
OSV
OSV
added 2026/03/06 12:42 p.m.5 views

OESA-2026-1516 freerdp security update

FreeRDP is a client implementation of the Remote Desktop Protocol RDP that follows Microsoft's open specifications. This package provides the client applications xfreerdp. Security Fixes: A malicious server can trigger a client-side heap buffer overflow, causing a crash DoS and potential heap...

9.8CVSS6.4AI score0.00756EPSS
Exploits17References27
RedHat Linux
RedHat Linux
added 2026/03/06 11:0 a.m.8 views

aiohttp: AIOHTTP's HTTP Parser auto_decompress feature is vulnerable to zip bomb

A decompression based denial of service flaw has been discovered in the AIOHTTP python library. Library versions 3.13.2 and below allow a zip bomb to be used to execute a DoS against the AIOHTTP server. An attacker may be able to send a compressed request that when decompressed by AIOHTTP could...

7.5CVSS5.8AI score0.00487EPSS
Exploits0References6
Rows per page
Query Builder