Lucene search
+L

7 matches found

redhat
redhat
added 2026/05/20 7:46 p.m.15 views

freerdp: FreeRDP: Denial of service due to use-after-free vulnerability

A flaw was found in FreeRDP. A remote attacker could exploit a use-after-free vulnerability in the xfSetWindowMinMaxInfo function. This occurs when a freed window pointer is dereferenced because the main thread concurrently deletes a window while the Remote Desktop Protocol RAIL channel thread is...

9.8CVSS5.8AI score0.00599EPSS
Exploits1References15
redhat
redhat
added 2026/05/19 4:22 p.m.8 views

freerdp: FreeRDP: Denial of service due to use-after-free vulnerability

A flaw was found in FreeRDP. A remote attacker could exploit a use-after-free vulnerability in the xfSetWindowMinMaxInfo function. This occurs when a freed window pointer is dereferenced because the main thread concurrently deletes a window while the Remote Desktop Protocol RAIL channel thread is...

9.8CVSS5.8AI score0.00599EPSS
Exploits1References15
redhat
redhat
added 2026/05/11 4:22 p.m.10 views

freerdp: FreeRDP: Denial of service due to use-after-free vulnerability

A flaw was found in FreeRDP. A remote attacker could exploit a use-after-free vulnerability in the xfSetWindowMinMaxInfo function. This occurs when a freed window pointer is dereferenced because the main thread concurrently deletes a window while the Remote Desktop Protocol RAIL channel thread is...

9.8CVSS5.8AI score0.00599EPSS
Exploits1References15
susecve
susecve
added 2026/02/27 12:25 a.m.14 views

SUSE CVE-2026-25952

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, xfSetWindowMinMaxInfo dereferences a freed xfAppWindow pointer because xfrailgetwindow in xfrailserverminmaxinfo returns an unprotected pointer from the railWindows hash table, and the main thread can...

5.3CVSS5.8AI score0.00599EPSS
Exploits1References14
osv
osv
added 2021/06/06 12:15 p.m.5 views

CVE-2021-32198

EmTec ZOC through 8.02.4 allows remote servers to cause a denial of service Windows GUI hang by telling the ZOC window to change its title repeatedly at high speed, which results in many SetWindowTextA or SetWindowTextW calls. In other words, it does not implement a usleep or similar delay upon...

9.8CVSS5.8AI score0.01151EPSS
Exploits0References2
cnnvd
cnnvd
added 2021/06/03 12:0 a.m.7 views

MobaXterm 资源管理错误漏洞

Mobatek MobaXterm is a suite of terminal software from the French company Mobatek that integrates an enhanced terminal, an X server and a Unix command set GNU/Cygwin. MobaXterm prior to 21.0 suffers from a security vulnerability that allows a remote server to cause a denial of service Windows GUI...

7.5CVSS7.4AI score0.01427EPSS
Exploits0References2
cnnvd
cnnvd
added 2021/06/03 12:0 a.m.7 views

Mintty 安全漏洞

Mintty is an application software Cygwin terminal emulator, also available for MSYS and Msys2. Mintty has a security vulnerability that can be exploited by an attacker to cause a denial of service Windows GUI hang by telling the Mintty window to repeatedly change its title at high speed, which...

7.5CVSS5.6AI score0.01637EPSS
Exploits0References3
Rows per page
Query Builder