47 matches found
Astra Linux - уязвимость в freerdp2
FreeRDP is a free implementation of the Remote Desktop Protocol RDP. Prior to version 2.7.0, server-side authentication against a SAM file might succeed with invalid credentials if the server had configured an invalid SAM file path. Clients based on FreeRDP are not affected by this issue. However...
EUVD-2022-29651
Malicious code in bioql PyPI...
OSV-2025-729 UNKNOWN READ in sam_hrecs_free_tags
OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=444492076 Crash type: UNKNOWN READ Crash state: samhrecsfreetags samhrecsparsesingleline samhdrbuildfromsamfile...
Improper Authentication
libfreerdp.so is vulnerable to Improper Authentication. The vulnerability is due to invalid credentials being accepted if the server has configured an invalid SAM file path. The attacker can successfully authenticate with invalid credentials if the SAM file path is incorrect...
Debian dla-3654 : freerdp2-dev - security update
The remote Debian 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3654 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-3654-1 [email protected]...
SUSE CVE-2022-24883
FreeRDP is a free implementation of the Remote Desktop Protocol RDP. Prior to version 2.7.0, server side authentication against a SAM file might be successful for invalid credentials if the server has configured an invalid SAM file path. FreeRDP based clients are not affected. RDP server...
GLSA-202210-24 : FreeRDP: Multiple Vulnerabilities
The remote host is affected by the vulnerability described in GLSA-202210-24 FreeRDP: Multiple Vulnerabilities - FreeRDP is a free implementation of the Remote Desktop Protocol RDP, released under the Apache license. All FreeRDP clients prior to version 2.4.1 using gateway connections /gt:rpc fai...
MGASA-2022-0383 Updated freerdp packages fix security vulnerability
FreeRDP is a free implementation of the Remote Desktop Protocol RDP. In versions prior to 2.7.0, NT LAN Manager NTLM authentication does not properly abort when someone provides and empty password value. This issue affects FreeRDP based RDP Server implementations. RDP clients are not affected. Th...
SUSE SLED15 / SLES15 Security Update : freerdp (SUSE-SU-2022:2353-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:2353-1 advisory. - FreeRDP is a free implementation of the Remote Desktop Protocol RDP. In versions prior to 2.7.0, NT LAN...
SUSE SLED12 / SLES12 Security Update : freerdp (SUSE-SU-2022:2352-1)
The remote SUSE Linux SLED12 / SLEDSAP12 / SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:2352-1 advisory. - FreeRDP is a free implementation of the Remote Desktop Protocol RDP. In versions prior to 2.7.0, NT LAN...
SUSE SLED15 / SLES15 Security Update : freerdp (SUSE-SU-2022:2354-1)
The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:2354-1 advisory. - FreeRDP is a free implementation of the Remote Desktop Protocol RDP. In versions prior to 2.7.0, NT LAN...
SUSE-SU-2022:2352-1 Security update for freerdp
This update for freerdp fixes the following issues: - CVE-2022-24882: Fixed incorrect check parameters in NTLM bsc1198919. - CVE-2022-24883: Fixed authentication against invalid SAM files bsc1198921...
EulerOS 2.0 SP8 : freerdp (EulerOS-SA-2022-1927)
According to the versions of the freerdp packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - FreeRDP is a free implementation of the Remote Desktop Protocol RDP. Prior to version 2.7.0, server side authentication against a SAM file migh...
USN-5461-1: FreeRDP vulnerabilities
It was discovered that FreeRDP incorrectly handled empty password values. A remote attacker could use this issue to bypass server authentication. This issue only affected Ubuntu 18.04 LTS, Ubuntu 20.04 LTS, and Ubuntu 21.10. CVE-2022-24882 It was discovered that FreeRDP incorrectly handled server...
OESA-2022-1657 freerdp security update
FreeRDP is a client implementation of the Remote Desktop Protocol RDP that follows Microsoft's open specifications. This package provides the client applications xfreerdp and wlfreerdp. Security Fixes: FreeRDP is a free implementation of the Remote Desktop Protocol RDP. Prior to version 2.7.0,...
CVE-2022-24883
A vulnerability was found in freerdp. This flaw occurs when the server-side authentication against a SAM file might be successful for invalid credentials if the server has configured an invalid SAM file path. This issue exposes an improper authenticating vulnerability...
CVE-2022-24883
FreeRDP is a free implementation of the Remote Desktop Protocol RDP. Prior to version 2.7.0, server side authentication against a SAM file might be successful for invalid credentials if the server has configured an invalid SAM file path. FreeRDP based clients are not affected. RDP server...
DEBIAN-CVE-2022-24883
FreeRDP is a free implementation of the Remote Desktop Protocol RDP. Prior to version 2.7.0, server side authentication against a SAM file might be successful for invalid credentials if the server has configured an invalid SAM file path. FreeRDP based clients are not affected. RDP server...
UBUNTU-CVE-2022-24883
FreeRDP is a free implementation of the Remote Desktop Protocol RDP. Prior to version 2.7.0, server side authentication against a SAM file might be successful for invalid credentials if the server has configured an invalid SAM file path. FreeRDP based clients are not affected. RDP server...
Design/Logic Flaw
FreeRDP is a free implementation of the Remote Desktop Protocol RDP. Prior to version 2.7.0, server side authentication against a SAM file might be successful for invalid credentials if the server has configured an invalid SAM file path. FreeRDP based clients are not affected. RDP server...