Lucene search
K

51 matches found

OSV
OSV
added 2026/02/22 12:53 a.m.9 views

MGASA-2026-0046 Updated freerdp packages fix security vulnerabilities

FreeRDP has heap-buffer-overflow in planardecompressplanerle. CVE-2026-23530 FreeRDP has heap-buffer-overflow in cleardecompress. CVE-2026-23531 FreeRDP has heap-buffer-overflow in gdiSurfaceToSurface. CVE-2026-23532 FreeRDP has heap-buffer-overflow in cleardecompressresidualdata. CVE-2026-23533...

9.8CVSS5.5AI score0.00628EPSS
Exploits5References7
NVD
NVD
added 2026/02/09 7:15 p.m.11 views

CVE-2026-24491

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, videotimer can send client notifications after the control channel is closed, dereferencing a freed callback and triggering a use after free. This vulnerability is fixed in 3.22.0...

8.7CVSS0.00467EPSS
Exploits0References2
OSV
OSV
added 2026/02/09 7:15 p.m.2 views

UBUNTU-CVE-2026-24491

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, videotimer can send client notifications after the control channel is closed, dereferencing a freed callback and triggering a use after free. This vulnerability is fixed in 3.22.0...

8.7CVSS5.8AI score0.00467EPSS
Exploits0References4
OSV
OSV
added 2026/02/09 6:13 p.m.3 views

CVE-2026-24491 FreeRDP has a heap-use-after-free in video_timer

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, videotimer can send client notifications after the control channel is closed, dereferencing a freed callback and triggering a use after free. This vulnerability is fixed in 3.22.0...

8.7CVSS5.6AI score0.00467EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2026/02/09 6:13 p.m.2 views

CVE-2026-24491 FreeRDP has a heap-use-after-free in video_timer

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, videotimer can send client notifications after the control channel is closed, dereferencing a freed callback and triggering a use after free. This vulnerability is fixed in 3.22.0...

8.7CVSS5.6AI score0.00467EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/02/09 6:13 p.m.6 views

CVE-2026-24491

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, videotimer can send client notifications after the control channel is closed, dereferencing a freed callback and triggering a use after free. This vulnerability is fixed in 3.22.0...

8.7CVSS5.6AI score0.00467EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2026/02/09 6:13 p.m.32 views

CVE-2026-24491 FreeRDP has a heap-use-after-free in video_timer

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, videotimer can send client notifications after the control channel is closed, dereferencing a freed callback and triggering a use after free. This vulnerability is fixed in 3.22.0...

8.7CVSS0.00467EPSS
Exploits0References2
CVE
CVE
added 2026/02/09 6:13 p.m.49 views

CVE-2026-24491

FreeRDP prior to 3.22.0 is affected by CVE-2026-24491: video_timer can send client notifications after the control channel is closed, dereferencing a freed callback and triggering a use-after-free. Affected: FreeRDP versions before 3.22.0. Impact: memory corruption and potential denial of service...

8.7CVSS5.6AI score0.00467EPSS
Exploits0References2Affected Software1
AlpineLinux
AlpineLinux
added 2026/02/09 6:13 p.m.2 views

CVE-2026-24491

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, videotimer can send client notifications after the control channel is closed, dereferencing a freed callback and triggering a use after free. This vulnerability is fixed in 3.22.0...

8.7CVSS5.6AI score0.00467EPSS
Exploits0
CNNVD
CNNVD
added 2026/02/09 12:0 a.m.7 views

FreeRDP 资源管理错误漏洞

FreeRDP is an open-source implementation of the Remote Desktop Protocol RDP by the FreeRDP team. Versions of FreeRDP prior to 3.22.0 contained a resource management vulnerability. This vulnerability stemmed from videotimer sending client notifications after the control channel was closed, which...

8.7CVSS5.8AI score0.00467EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/01/01 12:0 a.m.3 views

PT-2026-7033

Name of the Vulnerable Software and Affected Versions FreeRDP versions prior to 3.22.0 Description FreeRDP, a Remote Desktop Protocol implementation, contains a flaw where the video timer component may send client notifications after the control channel has been closed. This action can lead to a...

9.8CVSS5.3AI score0.0375EPSS
Exploits3References255
Rows per page
Query Builder