Lucene search
K

5 matches found

RedHat Linux
RedHat Linux
added 2026/02/23 1:45 a.m.23 views

freerdp: FreeRDP: Heap buffer overflow via crafted RDPGFX surface updates leads to denial of service and potential code execution.

A flaw was found in FreeRDP. A malicious server can exploit an out-of-bounds read/write vulnerability in the ClearCodec component by sending crafted RDPGFX surface updates. This can trigger a client-side heap buffer overflow, leading to a crash Denial of Service DoS and potential heap corruption...

9.8CVSS6AI score0.00443EPSS
Exploits1References7
RedHat Linux
RedHat Linux
added 2026/02/23 1:35 a.m.4 views

freerdp: FreeRDP: Heap buffer overflow via crafted RDPGFX surface updates leads to denial of service and potential code execution.

A flaw was found in FreeRDP. A malicious server can exploit an out-of-bounds read/write vulnerability in the ClearCodec component by sending crafted RDPGFX surface updates. This can trigger a client-side heap buffer overflow, leading to a crash Denial of Service DoS and potential heap corruption...

9.8CVSS6AI score0.00443EPSS
Exploits1References7
Tenable Nessus
Tenable Nessus
added 2026/02/23 12:0 a.m.3 views

RHEL 8 : freerdp (RHSA-2026:3039)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:3039 advisory. FreeRDP is a free implementation of the Remote Desktop Protocol RDP, released under the Apache license. The xfreerdp client can connect to R...

9.8CVSS6.7AI score0.00443EPSS
Exploits5References12
SUSE CVE
SUSE CVE
added 2026/01/20 12:25 a.m.4 views

SUSE CVE-2026-23531

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0, in ClearCodec, when glyphData is present, cleardecompress calls freerdpimagecopynooverlap without validating the destination rectangle, allowing an out-of-bounds read/write via crafted RDPGFX surface updates...

7.5CVSS5.9AI score0.00443EPSS
Exploits1References12
Tenable Nessus
Tenable Nessus
added 2026/01/19 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2026-23531

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0, in ClearCodec, when glyphData is present, cleardecompress calls...

9.8CVSS6AI score0.00443EPSS
Exploits1References4
Rows per page
Query Builder