Lucene search
K

13 matches found

RedhatCVE
RedhatCVE
added 2020/06/04 6:53 p.m.35 views

CVE-2020-11088

In FreeRDP less than or equal to 2.0.0, there is an out-of-bound read in ntlmreadNegotiateMessage. This has been fixed in 2.1.0. Mitigation Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use...

5.5CVSS1.7AI score0.01465EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2020/06/04 6:22 p.m.23 views

CVE-2020-11086

In FreeRDP less than or equal to 2.0.0, there is an out-of-bound read in ntlmreadntlmv2clientchallenge that reads up to 28 bytes out-of-bound to an internal structure. This has been fixed in 2.1.0. Mitigation Mitigation for this issue is either not available or the currently available options do...

5.5CVSS1.6AI score0.01425EPSS
Exploits0References3
NVD
NVD
added 2020/05/29 8:15 p.m.25 views

CVE-2020-11043

In FreeRDP less than or equal to 2.0.0, there is an out-of-bounds read in rfxprocessmessagetileset. Invalid data fed to RFX decoder results in garbage on screen as colors. This has been patched in 2.1.0...

5CVSS5.4AI score0.01907EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.26 views

Huawei EulerOS: Security Advisory for freerdp (EulerOS-SA-2019-2580)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS6.8AI score0.0367EPSS
Exploits7References2
Cvelist
Cvelist
added 2018/12/20 3:0 p.m.23 views

CVE-2018-1000852

FreeRDP FreeRDP 2.0.0-rc3 released version before commit 205c612820dac644d665b5bb1cdf437dc5ca01e3 contains a Other/Unknown vulnerability in channels/drdynvc/client/drdynvcmain.c, drdynvcprocesscapabilityrequest that can result in The RDP server can read the client's memory.. This attack appear to...

7.8AI score0.02666EPSS
Exploits1References6
UbuntuCve
UbuntuCve
added 2018/11/29 12:0 a.m.34 views

CVE-2018-8787

FreeRDP prior to version 2.0.0-rc4 contains an Integer Overflow that leads to a Heap-Based Buffer Overflow in function gdiBitmapDecompress and results in a memory corruption and probably even a remote code execution...

9.8CVSS7.4AI score0.08357EPSS
Exploits1References4
NVD
NVD
added 2018/04/24 7:29 p.m.19 views

CVE-2017-2835

An exploitable code execution vulnerability exists in the RDP receive functionality of FreeRDP 2.0.0-beta1+android11. A specially crafted server response can cause an out-of-bounds write resulting in an exploitable condition. An attacker can compromise the server or use a man in the middle to...

8.8CVSS8.2AI score0.01483EPSS
Exploits1References2
Prion
Prion
added 2018/04/24 7:29 p.m.19 views

Design/Logic Flaw

An exploitable code execution vulnerability exists in the authentication functionality of FreeRDP 2.0.0-beta1+android11. A specially crafted server response can cause an out-of-bounds write resulting in an exploitable condition. An attacker can compromise the server or use a man in the middle...

6.8CVSS7.6AI score0.01826EPSS
Exploits1References3Affected Software2
Cvelist
Cvelist
added 2018/04/24 7:0 p.m.24 views

CVE-2017-2834

An exploitable code execution vulnerability exists in the authentication functionality of FreeRDP 2.0.0-beta1+android11. A specially crafted server response can cause an out-of-bounds write resulting in an exploitable condition. An attacker can compromise the server or use a man in the middle...

8.8CVSS7.7AI score0.01826EPSS
Exploits1References3
CVE
CVE
added 2018/04/24 7:0 p.m.113 views

CVE-2017-2836

CVE-2017-2836 : FreeRDP contains an exploitable denial-of-service in the handling of proprietary server certificates. A specially crafted challenge packet can cause the program to terminate, resulting in a DoS condition. Affected component: FreeRDP 2.0.0-beta1+android11 (reading of server certifi...

6.5CVSS6.2AI score0.00953EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2018/04/24 7:0 p.m.97 views

CVE-2017-2839

CVE-2017-2839 affects FreeRDP 2.0.0-beta1+android11. A vulnerability in the handling of challenge packets can cause the program to terminate, leading to a denial of service. An attacker could exploit this over the network, potentially compromising the server or performing a man-in-the-middle atta...

6.5CVSS6.2AI score0.01722EPSS
Exploits1References3Affected Software1
Debian CVE
Debian CVE
added 2018/04/24 7:0 p.m.29 views

CVE-2017-2837

Removed by vendor...

6.5CVSS7AI score0.01569EPSS
Exploits1
RedhatCVE
RedhatCVE
added 2017/07/26 9:54 a.m.32 views

CVE-2017-2839

An exploitable denial of service vulnerability exists within the handling of challenge packets in FreeRDP 2.0.0-beta1+android11. A specially crafted challenge packet can cause the program termination leading to a denial of service condition. An attacker can compromise the server or use man in the...

6.5CVSS2.2AI score0.01722EPSS
Exploits1References2
Rows per page
Query Builder