CVE-2026-32624

xrdp is an open source RDP server. Versions through 0.10.5 contain a heap-based buffer overflow vulnerability in its logon processing. In environments where domainuserseparator is configured in xrdp.ini, an unauthenticated remote attacker can send a crafted, excessively long username and domain...

CVE-2026-23948

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, a NULL pointer dereference vulnerability in rdpwritelogoninfov2 allows a malicious RDP server to crash FreeRDP proxy by sending a specially crafted LogonInfoV2 PDU with cbDomain=0 or cbUserName=0. This vulnerability...

CVE-2022-25017

Hitron CHITA 7.2.2.0.3b6-CD devices contain a command injection vulnerability via the Device/DDNS ddnsUsername field...

The vulnerability of the fly-admin-printer-mac utility in the Astra Linux operating system, which allows a hacker to gain access to confidential data

The vulnerability of the fly-admin-printer-mac utility in the Astra Linux operating system relates to the printing of content from the GECOS field instead of the user’s domain username. Exploiting this vulnerability can allow an attacker to gain access to confidential data...