Lucene search
K

6 matches found

Redos
Redos
added 2026/06/10 12:0 a.m.9 views

ROS-20260610-73-0040

The vulnerability of the driveprocessirpread function in the RDP client FreeRDP is related to buffer overflow in dynamic memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code or cause a service failure...

9.8CVSS8.6AI score0.00453EPSS
Exploits1
SUSE Linux
SUSE Linux
added 2026/02/16 11:43 a.m.5 views

Security update for freerdp

This update for freerdp fixes the following issues: CVE-2026-22852: a malicious RDP server can trigger a heap-buffer-overflow in audinprocessformats bsc1256718. CVE-2026-22854: server-controlled read length is used to read file data into an IRP output can cause heap-buffer-overflow in...

7.7CVSS5.7AI score0.00756EPSS
Exploits8References32
OSV
OSV
added 2026/02/16 11:43 a.m.3 views

SUSE-SU-2026:0559-1 Security update for freerdp

This update for freerdp fixes the following issues: - CVE-2026-22852: a malicious RDP server can trigger a heap-buffer-overflow in audinprocessformats bsc1256718. - CVE-2026-22854: server-controlled read length is used to read file data into an IRP output can cause heap-buffer-overflow in...

9.8CVSS6.1AI score0.00756EPSS
Exploits8References17
OSV
OSV
added 2026/02/10 3:28 p.m.1 views

SUSE-SU-2026:0421-1 Security update for freerdp

This update for freerdp fixes the following issues: - CVE-2026-22852: a malicious RDP server can trigger a heap-buffer-overflow in audinprocessformats bsc1256718. - CVE-2026-22854: server-controlled read length is used to read file data into an IRP output can cause heap-buffer-overflow in...

9.8CVSS5.8AI score0.00756EPSS
Exploits8References17
Vulnrichment
Vulnrichment
added 2026/01/14 5:47 p.m.3 views

CVE-2026-22854 FreeRDP has a heap-buffer-overflow in drive_process_irp_read

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, a heap-buffer-overflow occurs in drive read when a server-controlled read length is used to read file data into an IRP output stream buffer without a hard upper bound, allowing an oversized read to overwrite heap...

7.7CVSS6.6AI score0.00453EPSS
Exploits1References2
Cvelist
Cvelist
added 2026/01/14 5:47 p.m.26 views

CVE-2026-22854 FreeRDP has a heap-buffer-overflow in drive_process_irp_read

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, a heap-buffer-overflow occurs in drive read when a server-controlled read length is used to read file data into an IRP output stream buffer without a hard upper bound, allowing an oversized read to overwrite heap...

7.7CVSS0.00453EPSS
Exploits1References2
Rows per page
Query Builder