Lucene search
K

5 matches found

Redos
Redos
added 2026/06/11 12:0 a.m.7 views

ROS-20260611-73-0006

The vulnerability of the planardecompressplanerle function in the FreeRDP RDP client is related to buffer overflow in the dynamic memory. Exploiting this vulnerability allows a remote attacker to execute arbitrary code and cause service failure...

9.8CVSS6.4AI score0.00443EPSS
Exploits1
RedHat Linux
RedHat Linux
added 2026/03/30 11:2 a.m.2 views

freerdp: FreeRDP: Arbitrary code execution via heap out-of-bounds write in RLE planar decode path

A flaw was found in FreeRDP, a free implementation of the Remote Desktop Protocol RDP. A malicious RDP server can exploit a heap out-of-bounds write vulnerability in the planardecompressplanerle function. This vulnerability allows the server to write past the end of a temporary buffer, potentiall...

8.8CVSS6.4AI score0.00591EPSS
Exploits1References6
OSV
OSV
added 2026/02/16 11:43 a.m.3 views

SUSE-SU-2026:0559-1 Security update for freerdp

This update for freerdp fixes the following issues: - CVE-2026-22852: a malicious RDP server can trigger a heap-buffer-overflow in audinprocessformats bsc1256718. - CVE-2026-22854: server-controlled read length is used to read file data into an IRP output can cause heap-buffer-overflow in...

9.8CVSS6.1AI score0.00756EPSS
Exploits8References17
Tenable Nessus
Tenable Nessus
added 2026/02/11 12:0 a.m.5 views

SUSE SLES15 Security Update : freerdp (SUSE-SU-2026:0421-1)

The remote SUSE Linux SLES15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:0421-1 advisory. - CVE-2026-22852: a malicious RDP server can trigger a heap-buffer-overflow in audinprocessformats bsc1256718. - CVE-2026-22854:...

9.8CVSS6AI score0.00756EPSS
Exploits8References25
Cvelist
Cvelist
added 2026/01/19 4:58 p.m.20 views

CVE-2026-23530 FreeRDP has heap-buffer-overflow in planar_decompress_plane_rle

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0,freerdpbitmapdecompressplanar does not validate nSrcWidth/nSrcHeight against planar-maxWidth/maxHeight before RLE decode. A malicious server can trigger a client‑side heap buffer overflow, causing a crash DoS...

8.7CVSS0.00443EPSS
Exploits1References5
Rows per page
Query Builder