Lucene search
+L

53 matches found

RedhatCVE
RedhatCVE
added last week5 views

CVE-2026-57157

A flaw was found in FreeRDP, a free implementation of the Remote Desktop Protocol RDP. FreeRDP server implementations with the MS-RDPECAM camera device enumerator channel enabled are vulnerable to an out-of-bounds heap read. A malicious RDP client can exploit this by manipulating the DeviceName a...

6.5CVSS6AI score0.00539EPSS
Exploits1References9
Cvelist
Cvelist
added last week32 views

CVE-2026-57157 Out-of-bounds read in the camera device enumerator server (rdpecam) via unterminated DeviceName / VirtualChannelName

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.28.0, FreeRDP server implementations with the MS-RDPECAM camera device enumerator channel enabled scan attacker-supplied DeviceName and VirtualChannelName fields for a NUL terminator in...

6.5CVSS0.00539EPSS
Exploits1References6
Tenable Nessus
Tenable Nessus
added 2026/07/09 12:0 a.m.7 views

Linux Distros Unpatched Vulnerability : CVE-2026-56297

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - FreeRDP before 3.22.0 contains a use-after-free vulnerability in dvcmanchannelclose and dvcmancallonreceive due to improper synchronization of channelcallback...

8.3CVSS6.5AI score0.00281EPSS
Exploits1References4
OSV
OSV
added 2026/07/08 2:17 p.m.1 views

DEBIAN-CVE-2026-56297

FreeRDP before 3.22.0 contains a use-after-free vulnerability in dvcmanchannelclose and dvcmancallonreceive due to improper synchronization of channelcallback access. A malicious RDP server can trigger a race condition by sending DYNVCDATA and DYNVCCLOSE messages concurrently, causing...

8.1CVSS6.5AI score0.00281EPSS
Exploits1References1
NVD
NVD
added 2026/07/08 2:17 p.m.9 views

CVE-2026-56297

FreeRDP before 3.22.0 contains a use-after-free vulnerability in dvcmanchannelclose and dvcmancallonreceive due to improper synchronization of channelcallback access. A malicious RDP server can trigger a race condition by sending DYNVCDATA and DYNVCCLOSE messages concurrently, causing...

8.3CVSS0.00281EPSS
Exploits1References2
Debian CVE
Debian CVE
added 2026/07/08 1:49 p.m.5 views

CVE-2026-56297

FreeRDP before 3.22.0 contains a use-after-free vulnerability in dvcmanchannelclose and dvcmancallonreceive due to improper synchronization of channelcallback access. A malicious RDP server can trigger a race condition by sending DYNVCDATA and DYNVCCLOSE messages concurrently, causing...

8.3CVSS6.5AI score0.00281EPSS
Exploits1
CVE
CVE
added 2026/07/08 1:49 p.m.13 views

CVE-2026-56297

FreeRDP

8.3CVSS6.6AI score0.00281EPSS
Exploits1References2Affected Software1
EUVD
EUVD
added 2026/05/27 3:33 p.m.16 views

EUVD-2025-209969

In the Linux kernel, the following vulnerability has been resolved: drm/display/dpmst: Add protection against 0 vcpi When releasing a timeslot there is a slight chance we may end up with the wrong payload mask due to overflow if the delayeddestroywork ends up coming into play after a DP 2.1 monit...

5.8AI score0.00156EPSS
Exploits0References7
NVD
NVD
added 2026/05/27 2:16 p.m.13 views

CVE-2025-71305

In the Linux kernel, the following vulnerability has been resolved: drm/display/dpmst: Add protection against 0 vcpi When releasing a timeslot there is a slight chance we may end up with the wrong payload mask due to overflow if the delayeddestroywork ends up coming into play after a DP 2.1 monit...

5.5CVSS0.00156EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2026/05/27 12:14 p.m.7 views

CVE-2025-71305

In the Linux kernel, the following vulnerability has been resolved: drm/display/dpmst: Add protection against 0 vcpi When releasing a timeslot there is a slight chance we may end up with the wrong payload mask due to overflow if the delayeddestroywork ends up coming into play after a DP 2.1 monit...

5.7AI score0.00156EPSS
Exploits0References7Affected Software1
OSV
OSV
added 2026/05/27 12:14 p.m.1 views

CVE-2025-71305 drm/display/dp_mst: Add protection against 0 vcpi

In the Linux kernel, the following vulnerability has been resolved: drm/display/dpmst: Add protection against 0 vcpi When releasing a timeslot there is a slight chance we may end up with the wrong payload mask due to overflow if the delayeddestroywork ends up coming into play after a DP 2.1 monit...

5.5CVSS5.9AI score0.00156EPSS
Exploits0References9
Positive Technologies
Positive Technologies
added 2026/05/27 12:0 a.m.13 views

PT-2026-43688

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description An issue exists in the DisplayPort Multi-Stream Transport MST component where releasing a timeslot can lead to an incorrect payload mask due to an overflow. This occurs if the delayed...

5.5CVSS5.5AI score0.00156EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2026/04/25 1:37 a.m.8 views

SUSE CVE-2026-31647

In the Linux kernel, the following vulnerability has been resolved: idpf: fix PREEMPTRT raw/bh spinlock nesting for async VC handling Switch from using the completion's raw spinlock to a local lock in the idpfvcxn struct. The conversion is safe because complete/all are called outside the lock and...

5.5CVSS5.5AI score0.00122EPSS
Exploits0References5
EUVD
EUVD
added 2026/04/24 2:45 p.m.5 views

EUVD-2026-25540

In the Linux kernel, the following vulnerability has been resolved: idpf: fix PREEMPTRT raw/bh spinlock nesting for async VC handling Switch from using the completion's raw spinlock to a local lock in the idpfvcxn struct. The conversion is safe because complete/all are called outside the lock and...

5.4AI score0.00122EPSS
Exploits0References4
CVE
CVE
added 2026/04/24 2:45 p.m.23 views

CVE-2026-31647

CVE-2026-31647 concerns the Linux kernel idpf driver. The vulnerability stems from improper nesting of PREEMPT_RT raw/BH spinlocks during asynchronous VC handling, which could yield an invalid wait context. A fix switches from the completion’s raw spinlock to a local lock in the idpf_vc_xn struct...

5.5CVSS5.4AI score0.00122EPSS
Exploits0References4Affected Software1
CNNVD
CNNVD
added 2026/04/24 12:0 a.m.10 views

Linux kernel 安全漏洞

The Linux kernel is the core of the open-source operating system Linux, developed by the Linux Foundation in the United States. There is a security vulnerability in the Linux kernel, which stems from the idpf driver’s use of a raw spinlock during asynchronous VC processing, leading to an...

5.5CVSS5.8AI score0.00122EPSS
Exploits0References1
NVD
NVD
added 2026/04/08 2:16 p.m.4 views

CVE-2026-31411

In the Linux kernel, the following vulnerability has been resolved: net: atm: fix crash due to unvalidated vcc pointer in sigdsend Reproducer available at 1. The ATM send path sendmsg - vccsendmsg - sigdsend reads the vcc pointer from msg-vcc and uses it directly without any validation. This...

5.5CVSS0.00131EPSS
Exploits0References10
Debian CVE
Debian CVE
added 2026/04/08 1:6 p.m.4 views

CVE-2026-31411

In the Linux kernel, the following vulnerability has been resolved: net: atm: fix crash due to unvalidated vcc pointer in sigdsend Reproducer available at 1. The ATM send path sendmsg - vccsendmsg - sigdsend reads the vcc pointer from msg-vcc and uses it directly without any validation. This...

5.5CVSS5.5AI score0.00131EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2026/03/25 11:16 a.m.6 views

CVE-2026-23286

In the Linux kernel, the following vulnerability has been resolved: atm: lec: fix null-ptr-deref in lecarpclearvccs syzkaller reported a null-ptr-deref in lecarpclearvccs. This issue can be easily reproduced using the syzkaller reproducer. In the ATM LANE LAN Emulation module, the same atmvcc can...

5.5CVSS5.7AI score0.00125EPSS
Exploits0References8
Tenable Nessus
Tenable Nessus
added 2026/03/25 12:0 a.m.3 views

Linux Distros Unpatched Vulnerability : CVE-2026-23286

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - atm: lec: fix null-ptr-deref in lecarpclearvccs syzkaller reported a null-ptr-deref in lecarpclearvccs. This issue can be easily reproduced using the syzkaller...

5.5CVSS6AI score0.00125EPSS
Exploits0References3
Rows per page
Query Builder