Lucene search
+L

4 matches found

BDU FSTEC
BDU FSTEC
added 2026/05/12 12:0 a.m.3 views

The vulnerability of the ecam_encoder_compress_h264() function in the implementation of the remote desktop protocol FreeRDP allows a intruder to gain access to confidential data or trigger a service failure.

The vulnerability of the ecamencodercompressh264 function in the FreeRDP remote desktop protocol is related to the use of memory after it is freed. Exploiting this vulnerability can allow a malicious actor to gain access to confidential data or cause service failures...

9.4CVSS7.3AI score0.00489EPSS
Exploits0References9Affected Software5
ATTACKERKB
ATTACKERKB
added 2026/02/09 6:16 p.m.4 views

CVE-2026-24677

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, ecamencodercompressh264 trusts server-controlled dimensions and does not validate the source buffer size, leading to an out-of-bounds read in swsscale. This vulnerability is fixed in 3.22.0...

8.7CVSS5.8AI score0.00489EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2026/02/09 6:16 p.m.34 views

CVE-2026-24677

FreeRDP prior to 3.22.0 contains a vulnerability in ecam_encoder_compress_h264 that trusts server-controlled dimensions and does not validate the source buffer size, causing an out-of-bounds read in sws_scale. This is fixed in version 3.22.0. Affected releases include FreeRDP before 3.22.0; multi...

9.1CVSS5.8AI score0.00489EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2026/02/09 6:16 p.m.5 views

CVE-2026-24677 FreeRDP has a heap-buffer-overflow in ecam_encoder_compress_h264

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, ecamencodercompressh264 trusts server-controlled dimensions and does not validate the source buffer size, leading to an out-of-bounds read in swsscale. This vulnerability is fixed in 3.22.0...

8.7CVSS5.8AI score0.00489EPSS
Exploits0References4
Rows per page
Query Builder