Lucene search
+L

38 matches found

OSV
OSV
added 2026/03/13 7:54 p.m.3 views

DEBIAN-CVE-2026-31884

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, division by zero in MS-ADPCM and IMA-ADPCM decoders when nBlockAlign is 0, leading to a crash. In libfreerdp/codec/dsp.c, both ADPCM decoders use size % blocksize where blocksize = context-common.format.nBlockAlign...

7.5CVSS4.7AI score0.00303EPSS
Exploits1References1
UbuntuCve
UbuntuCve
added 2026/03/13 7:54 p.m.3 views

CVE-2026-31883

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, a sizet underflow in the IMA-ADPCM and MS-ADPCM audio decoders leads to heap-buffer-overflow write via the RDPSND audio channel. In libfreerdp/codec/dsp.c, the IMA-ADPCM and MS-ADPCM decoders subtract block header...

9.8CVSS5.9AI score0.00317EPSS
Exploits1References3
OSV
OSV
added 2026/03/13 7:54 p.m.8 views

UBUNTU-CVE-2026-31883

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, a sizet underflow in the IMA-ADPCM and MS-ADPCM audio decoders leads to heap-buffer-overflow write via the RDPSND audio channel. In libfreerdp/codec/dsp.c, the IMA-ADPCM and MS-ADPCM decoders subtract block header...

9.8CVSS5.8AI score0.00317EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2026/03/13 7:48 p.m.7 views

CVE-2026-31884

A division by zero flaw has been discovered in FreeRDP. This division by zero exists in the MS-ADPCM and IMA-ADPCM decoders when nBlockAlign is 0, leading to a crash. In libfreerdp/codec/dsp.c, both ADPCM decoders use size % blocksize where blocksize = context-common.format.nBlockAlign. The...

7.5CVSS5.6AI score0.00303EPSS
Exploits1References6
Cvelist
Cvelist
added 2026/03/13 5:36 p.m.44 views

CVE-2026-31884 FreeRDP has a division-by-zero in ADPCM decoders when `nBlockAlign` is 0

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, division by zero in MS-ADPCM and IMA-ADPCM decoders when nBlockAlign is 0, leading to a crash. In libfreerdp/codec/dsp.c, both ADPCM decoders use size % blocksize where blocksize = context-common.format.nBlockAlign...

6.5CVSS0.00303EPSS
Exploits1References3
Cvelist
Cvelist
added 2026/03/13 5:35 p.m.38 views

CVE-2026-31883 FreeRDP has a `size_t` underflow in ADPCM decoder leads to heap-buffer-overflow write

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, a sizet underflow in the IMA-ADPCM and MS-ADPCM audio decoders leads to heap-buffer-overflow write via the RDPSND audio channel. In libfreerdp/codec/dsp.c, the IMA-ADPCM and MS-ADPCM decoders subtract block header...

6.5CVSS0.00317EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2026/03/13 5:35 p.m.11 views

CVE-2026-31883

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, a sizet underflow in the IMA-ADPCM and MS-ADPCM audio decoders leads to heap-buffer-overflow write via the RDPSND audio channel. In libfreerdp/codec/dsp.c, the IMA-ADPCM and MS-ADPCM decoders subtract block header...

6.5CVSS5.8AI score0.00317EPSS
Exploits1References3Affected Software1
AlpineLinux
AlpineLinux
added 2026/03/13 5:35 p.m.4 views

CVE-2026-31883

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, a sizet underflow in the IMA-ADPCM and MS-ADPCM audio decoders leads to heap-buffer-overflow write via the RDPSND audio channel. In libfreerdp/codec/dsp.c, the IMA-ADPCM and MS-ADPCM decoders subtract block header...

9.8CVSS5.8AI score0.00317EPSS
Exploits1
OSV
OSV
added 2026/03/13 5:35 p.m.7 views

CVE-2026-31883 FreeRDP has a `size_t` underflow in ADPCM decoder leads to heap-buffer-overflow write

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, a sizet underflow in the IMA-ADPCM and MS-ADPCM audio decoders leads to heap-buffer-overflow write via the RDPSND audio channel. In libfreerdp/codec/dsp.c, the IMA-ADPCM and MS-ADPCM decoders subtract block header...

6.5CVSS5.9AI score0.00317EPSS
Exploits1References4
OSV
OSV
added 2026/02/26 10:57 p.m.22 views

CLSA-2026-1771857838 freerdp: Fix of 6 CVEs

CVE-2026-23948: fix missing NULL check in core/info - CVE-2026-24491: reset channelcallback before close in drdynvc - CVE-2026-24676: reset audin-format in channels/audin - CVE-2026-24680: reset pointer after memory release in Wayland client - CVE-2026-24681: cancel all USB transfers on channel...

8.7CVSS5.8AI score0.00534EPSS
Exploits0References1
AlpineLinux
AlpineLinux
added 2026/02/09 6:23 p.m.4 views

CVE-2026-24684

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, the RDPSND async playback thread can process queued PDUs after the channel is closed and internal state is freed, leading to a use after free in rdpsndtreatwave. This vulnerability is fixed in 3.22.0...

8.7CVSS5.6AI score0.00534EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2026/01/01 12:0 a.m.8 views

PT-2026-25337

Name of the Vulnerable Software and Affected Versions FreeRDP versions prior to 3.24.0 Description FreeRDP is a free implementation of the Remote Desktop Protocol. A division by zero error exists in the MS-ADPCM and IMA-ADPCM decoders when the nBlockAlign variable is 0, resulting in a crash. The...

9.8CVSS5.8AI score0.00599EPSS
Exploits3References91
Positive Technologies
Positive Technologies
added 2026/01/01 12:0 a.m.3 views

PT-2026-25336

Name of the Vulnerable Software and Affected Versions FreeRDP versions prior to 3.24.0 Description FreeRDP is a free implementation of the Remote Desktop Protocol. A size t underflow in the IMA-ADPCM and MS-ADPCM audio decoders leads to a heap-buffer-overflow write via the RDPSND audio channel. T...

9.8CVSS5.8AI score0.00656EPSS
Exploits2References120
GithubExploit
GithubExploit
added 2019/08/18 2:34 a.m.93 views

Exploit for Use After Free in Microsoft

CVE-2019-0708 aka Bluekeep Scanner A simple scanner t...

10CVSS0.8AI score0.99999EPSS
Exploits123
CNVD
CNVD
added 2019/02/11 12:0 a.m.5 views

rdesktop rdpsnd_process_ping() function out-of-bounds read vulnerability

rdesktop is an open source UNIX client for connecting to Windows Remote Desktop Services. An out-of-bounds read vulnerability exists in the rdpsndprocessping function in rdesktop 1.8.3 and earlier. An attacker could exploit this vulnerability to obtain information...

7.5CVSS6.8AI score0.03826EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2019/02/05 8:29 p.m.8 views

CVE-2018-8798

rdesktop versions up to and including v1.8.3 contain an Out-Of-Bounds Read in function rdpsndprocessping that results in an information leak...

7.5CVSS5.4AI score0.03826EPSS
Exploits0References9
OSV
OSV
added 2019/02/05 8:29 p.m.3 views

DEBIAN-CVE-2018-8798

rdesktop versions up to and including v1.8.3 contain an Out-Of-Bounds Read in function rdpsndprocessping that results in an information leak...

7.5CVSS8.9AI score0.03826EPSS
Exploits0References1
OSV
OSV
added 2019/02/05 8:29 p.m.3 views

UBUNTU-CVE-2018-8798

rdesktop versions up to and including v1.8.3 contain an Out-Of-Bounds Read in function rdpsndprocessping that results in an information leak...

7.5CVSS7.1AI score0.03826EPSS
Exploits0References3
Rows per page
Query Builder