Lucene search
+L

36 matches found

AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux – Vulnerability in freerdp2

FreeRDP is a free implementation of the Remote Desktop Protocol RDP, released under the Apache license. The affected versions have a flaw in offset validation, which can lead to an out-of-bounds read. In the libfreerdp/codec/rfx.c file, there is no validation for the offsets in tile-quantIdxY,...

9.1CVSS7AI score0.01247EPSS
Exploits1References2
AstraLinux
AstraLinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux – Vulnerability in freerdp2

FreeRDP is a free implementation of the Remote Desktop Protocol. Clients that use versions of FreeRDP prior to 3.5.0 or 2.11.6 are vulnerable to out-of-bounds read vulnerabilities. Versions 3.5.0 and 2.11.6 address this issue. As a workaround, use the /gfx or /rfx modes default setting; requires...

9.8CVSS8AI score0.01958EPSS
Exploits0References2
Oracle linux
Oracle linux
added 2026/04/20 12:0 a.m.8 views

freerdp security update

2:2.11.7-7 - Update CLEARVBARENTRY size after alloc CVE-2026-33984 - Fail progressiverfxquantsub on invalid values CVE-2026-33983 Resolves: RHEL-162949, RHEL-162965...

7.5CVSS5.7AI score0.00426EPSS
Exploits0
Oracle linux
Oracle linux
added 2026/04/16 12:0 a.m.10 views

freerdp security update

2:2.11.7-1.6 - Update CLEARVBARENTRY size after alloc CVE-2026-33984 - Fail progressiverfxquantsub on invalid values CVE-2026-33983 Resolves: RHEL-162958, RHEL-162978...

7.5CVSS5.8AI score0.00426EPSS
Exploits0
Oracle linux
Oracle linux
added 2026/04/16 12:0 a.m.8 views

freerdp security update

2:3.10.3-5.6 - Update CLEARVBARENTRY size after alloc CVE-2026-33984 - Fail progressiverfxquantsub on invalid values CVE-2026-33983 Resolves: RHEL-162946, RHEL-162962...

7.5CVSS5.8AI score0.00426EPSS
Exploits0
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-3427

Malware in sbrugna...

5CVSS6.8AI score0.01907EPSS
Exploits0References9
RedhatCVE
RedhatCVE
added 2025/05/22 6:43 p.m.6 views

CVE-2021-39595

An issue was discovered in swftools through 20200710. A stack-buffer-overflow exists in the function rfxalloc located in mem.c. It allows an attacker to cause code Execution...

7.8CVSS6.9AI score0.01095EPSS
Exploits1References1
Tenable Nessus
Tenable Nessus
added 2024/08/09 12:0 a.m.10 views

Fedora 40 : xrdp (2024-e142be4915)

The remote Fedora 40 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-e142be4915 advisory. Release notes for xrdp v0.10.1 2024/07/31 General announcements A clipboard bugfix included in this release is sponsored by Krmer Pferdesport GmbH & Co KG. W...

6.1AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/08/09 12:0 a.m.6 views

Fedora 39 : xrdp (2024-41c1bf8de6)

The remote Fedora 39 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2024-41c1bf8de6 advisory. Release notes for xrdp v0.10.1 2024/07/31 General announcements A clipboard bugfix included in this release is sponsored by Krmer Pferdesport GmbH & Co KG. W...

6.1AI score
Exploits0References1
RedhatCVE
RedhatCVE
added 2024/04/23 9:5 p.m.19 views

CVE-2024-32458

FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients that use a version of FreeRDP prior to 3.5.0 or 2.11.6 are vulnerable to out-of-bounds read. Versions 3.5.0 and 2.11.6 patch the issue. As a workaround, use /gfx or /rfx modes on by default, require server side...

9.8CVSS9.5AI score0.01958EPSS
Exploits0References4
OSV
OSV
added 2024/04/23 12:0 a.m.5 views

UBUNTU-CVE-2024-32458

FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients that use a version of FreeRDP prior to 3.5.0 or 2.11.6 are vulnerable to out-of-bounds read. Versions 3.5.0 and 2.11.6 patch the issue. As a workaround, use /gfx or /rfx modes on by default, require server side...

9.8CVSS7.3AI score0.01958EPSS
Exploits0References9
Cvelist
Cvelist
added 2024/04/22 9:49 p.m.23 views

CVE-2024-32460 FreeRDP Out-Of-Bounds Read in interleaved_decompress

FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based based clients using /bpp:32 legacy GDI drawing path with a version of FreeRDP prior to 3.5.0 or 2.11.6 are vulnerable to out-of-bounds read. Versions 3.5.0 and 2.11.6 patch the issue. As a workaround, use modern drawin...

8.1CVSS9.1AI score0.01922EPSS
Exploits0References8
NVD
NVD
added 2024/04/22 9:15 p.m.8 views

CVE-2024-32041

FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients that use a version of FreeRDP prior to 3.5.0 or 2.11.6 are vulnerable to out-of-bounds read. Versions 3.5.0 and 2.11.6 patch the issue. As a workaround, deactivate /gfx on by default, set /bpp or /rfx options...

9.8CVSS9.5AI score0.0195EPSS
Exploits1References8
Vulnrichment
Vulnrichment
added 2024/04/22 8:52 p.m.14 views

CVE-2024-32458 FreeRDP Out-Of-Bounds Read in planar_skip_plane_rle

FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients that use a version of FreeRDP prior to 3.5.0 or 2.11.6 are vulnerable to out-of-bounds read. Versions 3.5.0 and 2.11.6 patch the issue. As a workaround, use /gfx or /rfx modes on by default, require server side...

9.8CVSS6.8AI score0.01958EPSS
Exploits0References8
AlpineLinux
AlpineLinux
added 2024/04/22 8:52 p.m.13 views

CVE-2024-32458

FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients that use a version of FreeRDP prior to 3.5.0 or 2.11.6 are vulnerable to out-of-bounds read. Versions 3.5.0 and 2.11.6 patch the issue. As a workaround, use /gfx or /rfx modes on by default, require server side...

9.8CVSS6.9AI score0.01958EPSS
Exploits0References9
AlpineLinux
AlpineLinux
added 2024/04/22 8:39 p.m.15 views

CVE-2024-32041

FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients that use a version of FreeRDP prior to 3.5.0 or 2.11.6 are vulnerable to out-of-bounds read. Versions 3.5.0 and 2.11.6 patch the issue. As a workaround, deactivate /gfx on by default, set /bpp or /rfx options...

9.8CVSS6.9AI score0.0195EPSS
Exploits1References8
OSV
OSV
added 2024/01/19 6:15 p.m.4 views

CVE-2024-22915

A heap-use-after-free was found in SWFTools v0.9.2, in the function swfDeleteTag at rfxswf.c:1193. It allows an attacker to cause code execution...

7.8CVSS5.8AI score0.00376EPSS
Exploits1References1
OSV
OSV
added 2023/09/15 11:5 a.m.3 views

OESA-2023-1656 freerdp security update

FreeRDP is a client implementation of the Remote Desktop Protocol RDP that follows Microsoft's open specifications. This package provides the client applications xfreerdp and wlfreerdp. Security Fixes: FreeRDP is a free implementation of the Remote Desktop Protocol RDP, released under the Apache...

9.8CVSS7AI score0.01529EPSS
Exploits12References13
BDU FSTEC
BDU FSTEC
added 2023/09/04 12:0 a.m.4 views

The vulnerability in the `libfreerdp/codec/rfx.c` component of the RDP client FreeRDP, related to the occurrence of operations outside the buffer boundaries in memory, allows a hacker to trigger a service failure.

The vulnerability in the libfreerdp/codec/rfx.c component of the RDP client FreeRDP is related to the issue where operations are performed outside of the buffer boundaries in memory when processing parameters tile-quantIdxY, tile-quantIdxCb, and tile-quantIdxCr. Exploiting this vulnerability can...

5.3CVSS7AI score0.01247EPSS
Exploits1References10Affected Software3
OSV
OSV
added 2023/08/31 9:15 p.m.3 views

DEBIAN-CVE-2023-39353

FreeRDP is a free implementation of the Remote Desktop Protocol RDP, released under the Apache license. Affected versions are subject to a missing offset validation leading to Out Of Bound Read. In the libfreerdp/codec/rfx.c file there is no offset validation in tile-quantIdxY, tile-quantIdxCb, a...

9.1CVSS6.9AI score0.01247EPSS
Exploits1References1
Rows per page
Query Builder