Lucene search
K

13 matches found

AstraLinux
AstraLinux
added 2026/06/24 3:11 p.m.7 views

Astra Linux – Vulnerability in freerdp3

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.22.0, a capture thread sent sample responses using a freed channel callback after a device channel was closed, resulting in a use of memory after deallocation in ecamchannelwrite. This vulnerability has been fixed...

8.7CVSS5.3AI score0.00628EPSS
Exploits0References3
Redos
Redos
added 2026/06/11 12:0 a.m.6 views

ROS-20260611-73-0034

The vulnerability of the ecamchannelwrite function in the FreeRDP remote desktop protocol is related to the use of memory after it is freed. Exploiting this vulnerability could allow a malicious actor to cause a service failure...

8.7CVSS7.2AI score0.00628EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2026/05/19 1:29 p.m.11 views

freerdp: FreeRDP: Denial of Service via use after free in ecam_channel_write

A denial of service flaw has been found in FreeRDP. A capture thread sends sample responses using a freed channel callback after a device channel close, leading to a use after free in ecamchannelwrite...

8.7CVSS5.7AI score0.00628EPSS
Exploits0References6
RedHat Linux
RedHat Linux
added 2026/03/09 6:7 p.m.9 views

freerdp: FreeRDP: Denial of Service via use after free in ecam_channel_write

A denial of service flaw has been found in FreeRDP. A capture thread sends sample responses using a freed channel callback after a device channel close, leading to a use after free in ecamchannelwrite...

8.7CVSS5.7AI score0.00628EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2026/03/09 12:0 a.m.4 views

RHEL 10 : freerdp (RHSA-2026:4121)

The remote Redhat Enterprise Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:4121 advisory. FreeRDP is a free implementation of the Remote Desktop Protocol RDP, released under the Apache license. The xfreerdp client can connect to...

9.8CVSS5.9AI score0.00756EPSS
Exploits4References12
OSV
OSV
added 2026/02/24 6:56 p.m.6 views

RLSA-2026:3068 Important: freerdp security update

FreeRDP is a free implementation of the Remote Desktop Protocol RDP, released under the Apache license. The xfreerdp client can connect to RDP servers such as Microsoft Windows machines, xrdp, and VirtualBox. Security Fixes: freerdp: FreeRDP heap-buffer-overflow CVE-2026-22855 freerdp: FreeRDP...

8.1CVSS5.6AI score0.00756EPSS
Exploits4References6
RedHat Linux
RedHat Linux
added 2026/02/23 10:17 a.m.4 views

freerdp: FreeRDP: Denial of Service via use after free in ecam_channel_write

A denial of service flaw has been found in FreeRDP. A capture thread sends sample responses using a freed channel callback after a device channel close, leading to a use after free in ecamchannelwrite...

8.7CVSS5.7AI score0.00628EPSS
Exploits0References6
NVD
NVD
added 2026/02/09 7:15 p.m.6 views

CVE-2026-24678

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, A capture thread sends sample responses using a freed channel callback after a device channel close, leading to a use after free in ecamchannelwrite. This vulnerability is fixed in 3.22.0...

8.7CVSS0.00628EPSS
Exploits0References8
OSV
OSV
added 2026/02/09 7:15 p.m.3 views

UBUNTU-CVE-2026-24678

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, A capture thread sends sample responses using a freed channel callback after a device channel close, leading to a use after free in ecamchannelwrite. This vulnerability is fixed in 3.22.0...

8.7CVSS5.8AI score0.00628EPSS
Exploits0References4
AlpineLinux
AlpineLinux
added 2026/02/09 6:17 p.m.6 views

CVE-2026-24678

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, A capture thread sends sample responses using a freed channel callback after a device channel close, leading to a use after free in ecamchannelwrite. This vulnerability is fixed in 3.22.0...

8.7CVSS5.6AI score0.00628EPSS
Exploits0
CVE
CVE
added 2026/02/09 6:17 p.m.21 views

CVE-2026-24678

CVE-2026-24678 affects FreeRDP prior to 3.22.0. A capture thread sends sample responses using a freed channel callback after a device channel close, causing a use-after-free in ecam_channel_write. The issue is fixed in 3.22.0. Severity in the cited metric is high (CVSS v4.0: base 8.7; network att...

8.7CVSS5.5AI score0.00628EPSS
Exploits0References8Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/02/09 6:17 p.m.9 views

CVE-2026-24678

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, A capture thread sends sample responses using a freed channel callback after a device channel close, leading to a use after free in ecamchannelwrite. This vulnerability is fixed in 3.22.0...

8.7CVSS5.5AI score0.00628EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologies
added 2026/01/01 12:0 a.m.9 views

PT-2026-7037

Name of the Vulnerable Software and Affected Versions FreeRDP versions prior to 3.22.0 Description A flaw exists in FreeRDP related to handling device channel closures. Specifically, a capture thread may send responses using a callback function after the associated channel has been closed,...

9.8CVSS5.3AI score0.01193EPSS
Exploits2References146
Rows per page
Query Builder