Lucene search
K

38 matches found

RedHat Linux
RedHat Linux
added 2026/04/07 7:47 a.m.8 views

freerdp: FreeRDP heap-buffer-overflow

A heap based buffer overflow has been discovered in FreeRDP. This heap-buffer-overflow occurs in drive read when a server-controlled read length is used to read file data into an IRP output stream buffer without a hard upper bound, allowing an oversized read to overwrite heap memory...

9.8CVSS6.1AI score0.00453EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2026/04/07 6:25 a.m.4 views

freerdp: FreeRDP heap-buffer-overflow

A heap based buffer overflow has been discovered in FreeRDP. This heap-buffer-overflow occurs in drive read when a server-controlled read length is used to read file data into an IRP output stream buffer without a hard upper bound, allowing an oversized read to overwrite heap memory...

9.8CVSS6.1AI score0.00453EPSS
Exploits1References6
RedHat Linux
RedHat Linux
added 2026/04/01 9:8 a.m.4 views

freerdp: FreeRDP heap-buffer-overflow

A heap based buffer overflow has been discovered in FreeRDP. This heap-buffer-overflow occurs in drive read when a server-controlled read length is used to read file data into an IRP output stream buffer without a hard upper bound, allowing an oversized read to overwrite heap memory...

9.8CVSS5.9AI score0.00453EPSS
Exploits1References6
Vulnrichment
Vulnrichment
added 2026/02/16 12:10 p.m.5 views

CVE-2026-1046 Arbitrary application execution via unvalidated server-controlled URLs in Help menu

Mattermost Desktop App versions =6.0 6.2.0 5.2.13.0 fail to validate help links which allows a malicious Mattermost server to execute arbitrary executables on a user’s system via the user clicking on certain items in the Help menu Mattermost Advisory ID: MMSA-2026-00577...

7.6CVSS5.9AI score0.00235EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2026/01/16 12:25 a.m.3 views

SUSE CVE-2026-22854

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, a heap-buffer-overflow occurs in drive read when a server-controlled read length is used to read file data into an IRP output stream buffer without a hard upper bound, allowing an oversized read to overwrite heap...

7.5CVSS7AI score0.00453EPSS
Exploits1References12
OSV
OSV
added 2026/01/14 6:16 p.m.9 views

UBUNTU-CVE-2026-22854

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, a heap-buffer-overflow occurs in drive read when a server-controlled read length is used to read file data into an IRP output stream buffer without a hard upper bound, allowing an oversized read to overwrite heap...

9.8CVSS6AI score0.00453EPSS
Exploits1References5
UbuntuCve
UbuntuCve
added 2026/01/14 6:16 p.m.3 views

CVE-2026-22854

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, a heap-buffer-overflow occurs in drive read when a server-controlled read length is used to read file data into an IRP output stream buffer without a hard upper bound, allowing an oversized read to overwrite heap...

9.8CVSS6AI score0.00453EPSS
Exploits1References4
CVE
CVE
added 2026/01/14 5:47 p.m.27 views

CVE-2026-22854

CVE-2026-22854 affects FreeRDP prior to 3.20.1 due to a heap-buffer-overflow in the drive_read path when a server-controlled read length writes file data into an IRP output stream buffer without a hard upper bound. This can allow an oversized read to overwrite heap memory. The vulnerability is la...

9.8CVSS6.6AI score0.00453EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2026/01/14 5:47 p.m.23 views

CVE-2026-22854 FreeRDP has a heap-buffer-overflow in drive_process_irp_read

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, a heap-buffer-overflow occurs in drive read when a server-controlled read length is used to read file data into an IRP output stream buffer without a hard upper bound, allowing an oversized read to overwrite heap...

7.7CVSS0.00453EPSS
Exploits1References2
EUVD
EUVD
added 2026/01/14 5:47 p.m.5 views

EUVD-2026-2673

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, a heap-buffer-overflow occurs in drive read when a server-controlled read length is used to read file data into an IRP output stream buffer without a hard upper bound, allowing an oversized read to overwrite heap...

7.7CVSS6.4AI score0.00453EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2026/01/14 5:47 p.m.8 views

CVE-2026-22854

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, a heap-buffer-overflow occurs in drive read when a server-controlled read length is used to read file data into an IRP output stream buffer without a hard upper bound, allowing an oversized read to overwrite heap...

9.8CVSS5.8AI score0.00453EPSS
Exploits1References3Affected Software1
OSV
OSV
added 2026/01/14 5:47 p.m.8 views

CVE-2026-22854 FreeRDP has a heap-buffer-overflow in drive_process_irp_read

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, a heap-buffer-overflow occurs in drive read when a server-controlled read length is used to read file data into an IRP output stream buffer without a hard upper bound, allowing an oversized read to overwrite heap...

7.7CVSS6.1AI score0.00453EPSS
Exploits1References4
AlpineLinux
AlpineLinux
added 2026/01/14 5:47 p.m.3 views

CVE-2026-22854

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, a heap-buffer-overflow occurs in drive read when a server-controlled read length is used to read file data into an IRP output stream buffer without a hard upper bound, allowing an oversized read to overwrite heap...

9.8CVSS7AI score0.00453EPSS
Exploits1
CNNVD
CNNVD
added 2026/01/14 12:0 a.m.4 views

FreeRDP 安全漏洞

FreeRDP is an open source implementation of the Remote Desktop Protocol RDP from the FreeRDP team. A security vulnerability exists in FreeRDP versions prior to 3.20.1, which stems from a drive read where the server-controlled read length is used to read file data into the IRP output stream buffer...

9.8CVSS7.4AI score0.00453EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2026/01/01 12:0 a.m.4 views

PT-2026-2932

Name of the Vulnerable Software and Affected Versions FreeRDP versions prior to 3.20.1 Description A heap-buffer-overflow can occur in drive read when a server-controlled read length is used to read file data into an IRP output stream buffer without a hard upper bound. This allows an oversized re...

9.8CVSS6.7AI score0.01958EPSS
Exploits13References232
OSV
OSV
added 2024/06/25 12:0 a.m.4 views

UBUNTU-CVE-2024-5594

OpenVPN before 2.6.11 does not santize PUSHREPLY messages properly which an attacker controlling the server can use to inject unexpected arbitrary data ending up in client logs...

9.1CVSS7.3AI score0.00805EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2020/07/16 7:8 p.m.21 views

CVE-2020-15646

If an attacker intercepts Thunderbird's initial attempt to perform automatic account setup using the Microsoft Exchange autodiscovery mechanism, and the attacker sends a crafted response, then Thunderbird sends username and password over https to a server controlled by the attacker. This...

4.3CVSS2.1AI score0.00961EPSS
Exploits0References4
securityvulns
securityvulns
added 2011/10/16 12:0 a.m.51 views

wget unsafe files creation

Local file is created with server controlled filename...

6.8CVSS1.6AI score0.04214EPSS
Exploits0Affected Software1
Rows per page
Query Builder