3 matches found
CVE-2026-33516
A flaw was found in xrdp, an open-source Remote Desktop Protocol RDP server. A remote, unauthenticated attacker can exploit an out-of-bounds read vulnerability by sending a specially crafted Confirm Active PDU during the RDP capability exchange. This issue occurs when memory is accessed without...
CVE-2026-33516 xrdp: Pre-authentication out-of-bounds reads in RDP capability and channel parsers
xrdp is an open source RDP server. Versions through 0.10.5 contain an out-of-bounds read vulnerability during the RDP capability exchange phase. The issue occurs when memory is accessed before validating the remaining buffer length. A remote, unauthenticated attacker can trigger this vulnerabilit...
CVE-2026-33516
xrdp is an open source RDP server. Versions through 0.10.5 contain an out-of-bounds read vulnerability during the RDP capability exchange phase. The issue occurs when memory is accessed before validating the remaining buffer length. A remote, unauthenticated attacker can trigger this vulnerabilit...