Lucene search
K

15 matches found

Redos
Redos
added 2026/06/15 12:0 a.m.8 views

ROS-20260615-73-0018

The vulnerability of the xfAppUpdateWindowFromSurface function in the RDP client FreeRDP relates to the use of memory after it is freed. Exploiting this vulnerability could allow a remote attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

9.8CVSS8.3AI score0.00498EPSS
Exploits1
Redos
Redos
added 2026/06/15 12:0 a.m.8 views

ROS-20260615-73-0017

The vulnerability of the xfAppUpdateWindowFromSurface function in the RDP client FreeRDP relates to the use of memory after it is freed. Exploiting this vulnerability could allow a remote attacker to compromise the confidentiality, integrity, and accessibility of the protected information...

9.8CVSS8.3AI score0.00498EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2026/03/01 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2026-25955

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, xfAppUpdateWindowFromSurface reuses a cached XImage whose data pointer...

9.8CVSS5.8AI score0.00498EPSS
Exploits1References4
ATTACKERKB
ATTACKERKB
added 2026/02/25 8:32 p.m.10 views

CVE-2026-25955

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, xfAppUpdateWindowFromSurface reuses a cached XImage whose data pointer references a freed RDPGFX surface buffer, because gdiDeleteSurface frees surface-data without invalidating the appWindow-image that...

9.8CVSS5.4AI score0.00498EPSS
Exploits1References7Affected Software1
Cvelist
Cvelist
added 2026/02/25 8:32 p.m.26 views

CVE-2026-25955 FreeRDP has heap-use-after-free in xf_AppUpdateWindowFromSurface (stale XImage)

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, xfAppUpdateWindowFromSurface reuses a cached XImage whose data pointer references a freed RDPGFX surface buffer, because gdiDeleteSurface frees surface-data without invalidating the appWindow-image that...

6.9CVSS0.00498EPSS
Exploits1References6
CVE
CVE
added 2026/02/25 8:27 p.m.37 views

CVE-2026-25953

CVE-2026-25953 (FreeRDP) : A use-after-free condition exists in FreeRDP prior to 3.23.0 where the RDPGFX DVC thread obtains a bare pointer to an xfAppWindow via xf_rail_get_window. The main thread can concurrently delete the window (via a fastpath window-delete order), causing xf_AppUpdateWindowF...

9.8CVSS5.4AI score0.00587EPSS
Exploits1References10Affected Software1
Cvelist
Cvelist
added 2026/02/25 8:27 p.m.26 views

CVE-2026-25953 FreeRDP has heap-use-after-free in xf_AppUpdateWindowFromSurface (freed appWindow)

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, xfAppUpdateWindowFromSurface reads from a freed xfAppWindow because the RDPGFX DVC thread obtains a bare pointer via xfrailgetwindow without any lifetime protection, while the main thread can concurrently...

6.9CVSS0.00587EPSS
Exploits1References10
CNNVD
CNNVD
added 2026/02/25 12:0 a.m.5 views

FreeRDP 安全漏洞

FreeRDP is an open-source RDP protocol implementation developed by the FreeRDP team. Versions of FreeRDP prior to 3.23.0 contained security vulnerabilities. These vulnerabilities stemmed from the xfAppUpdateWindowFromSurface function, which attempted to read data from an already released...

9.8CVSS7.3AI score0.00587EPSS
Exploits1References10
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2007-0736

Malware in sbrugna...

4.6CVSS6.4AI score0.00398EPSS
Exploits0References9
SUSE CVE
SUSE CVE
added 2023/02/15 3:28 a.m.7 views

SUSE CVE-2022-23484

xrdp is an open source project which provides a graphical login to remote machines using Microsoft Remote Desktop Protocol RDP. xrdp v0.9.21 contain a Integer Overflow in xrdpmmprocessrailupdatewindowtext function. There are no known workarounds for this issue. Users are advised to upgrade...

5.3CVSS6.7AI score0.00724EPSS
Exploits0References8
BDU FSTEC
BDU FSTEC
added 2022/12/19 12:0 a.m.14 views

The vulnerability of the xrdp_mm_process_rail_update_window_text() function on the XRDP server allows a hacker to execute arbitrary code.

The vulnerability of the xrdpmmprocessrailupdatewindowtext function on the XRDP server is related to integer overflow. Exploiting this vulnerability allows a remote attacker to execute arbitrary code...

10CVSS7.7AI score0.00724EPSS
Exploits0References12Affected Software4
OSV
OSV
added 2022/12/09 6:15 p.m.5 views

UBUNTU-CVE-2022-23484

xrdp is an open source project which provides a graphical login to remote machines using Microsoft Remote Desktop Protocol RDP. xrdp v0.9.21 contain a Integer Overflow in xrdpmmprocessrailupdatewindowtext function. There are no known workarounds for this issue. Users are advised to upgrade...

9.8CVSS7AI score0.00724EPSS
Exploits0References4
CNNVD
CNNVD
added 2022/12/09 12:0 a.m.16 views

xrdp 输入验证错误漏洞

xrdp is an open source remote desktop protocol server from Neutrinolabs Labs. An input validation error vulnerability exists in versions prior to xrdp v0.9.21, which stems from the inclusion of an integer overflow in the xrdpmmprocessrailupdatewindowtext function...

9.8CVSS7.6AI score0.00724EPSS
Exploits0References8
Code423n4
Code423n4
added 2022/07/08 12:0 a.m.10 views

Price Feed is not checked for freshness and may report old / incorrect value

Lines of code Vulnerability details Price Feed is not checked for freshness In times of network conjestion, the priceFeed may take longer than expected to update, and the price may take longer than usual to update, in order to ensure the latest price is fresh within update window, you should veri...

6.8AI score
Exploits0
Cvelist
Cvelist
added 2007/04/24 5:0 p.m.21 views

CVE-2007-0739

The Login Window in Apple Mac OS X 10.4 through 10.4.9 displays the software update window beneath the loginwindow authentication dialog in certain circumstances related to running scheduled tasks, which allows local users to bypass authentication controls...

6AI score0.00398EPSS
Exploits0References8
Rows per page
Query Builder