Lucene search
+L

61 matches found

osv
osv
added 2026/06/25 12:1 p.m.3 views

RLSA-2023:2851 Moderate: freerdp security update

FreeRDP is a free implementation of the Remote Desktop Protocol RDP, released under the Apache license. The xfreerdp client can connect to RDP servers such as Microsoft Windows machines, xrdp, and VirtualBox. Security Fixes: freerdp: clients using /parallel command line switch might read...

7.5CVSS6.2AI score0.00985EPSS
Exploits0References10
rocky
rocky
added 2026/06/25 12:1 p.m.7 views

freerdp security update

An update is available for freerdp. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list FreeRDP is a free implementation of the Remote Desktop Protocol RDP, released...

7.5CVSS6.7AI score0.00985EPSS
Exploits0
nessus
nessus
added 2026/06/25 12:0 a.m.4 views

RockyLinux 8 : freerdp (RLSA-2023:2851)

The remote RockyLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2023:2851 advisory. freerdp: clients using /parallel command line switch might read uninitialized data CVE-2022-39282 freerdp: clients using the /video command line switch...

7.5CVSS6.8AI score0.00985EPSS
Exploits0References19
astralinux
astralinux
added 2026/05/20 5:53 a.m.8 views

Astra Linux – Vulnerability in freerdp2

FreeRDP is a free remote desktop protocol library and client. In affected versions, there is an out-of-bound read in the ZGFX decoder component of FreeRDP. A malicious server can trick a FreeRDP-based client into reading out-of-bound data and attempting to decode it, potentially leading to a cras...

5.7CVSS5.9AI score0.00967EPSS
Exploits0References2
astralinux
astralinux
added 2026/05/20 5:53 a.m.4 views

Astra Linux – Vulnerability in freerdp2

FreeRDP is a free implementation of the Remote Desktop Protocol RDP, released under the Apache license. The affected versions are subject to an integer underflow leading to out-of-bounds read operations in the zgfxdecompresssegment function. In the context of CopyMemory, it’s possible to read dat...

9.1CVSS7AI score0.01432EPSS
Exploits1References2
astralinux
astralinux
added 2026/05/20 5:53 a.m.8 views

Astra Linux – Vulnerability in freerdp2

FreeRDP is a free remote desktop protocol library and client. Affected versions of FreeRDP lack a range check for the input offset index in the ZGFX decoder. A malicious server can trick a FreeRDP-based client into reading out-of-bound data and attempting to decode it. This issue has been address...

4.6CVSS5.9AI score0.00627EPSS
Exploits0References2
nessus
nessus
added 2026/01/20 12:0 a.m.11 views

MiracleLinux 8 : freerdp-2.2.0-10.el8 (AXSA:2023-5972:03)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-5972:03 advisory. freerdp: clients using /parallel command line switch might read uninitialized data CVE-2022-39282 freerdp: clients using the /video command line...

7.5CVSS6AI score0.00985EPSS
Exploits0References10
nessus
nessus
added 2026/01/20 12:0 a.m.6 views

MiracleLinux 9 : freerdp-2.4.1-5.el9 (AXSA:2023-5536:02)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2023-5536:02 advisory. freerdp: clients using /parallel command line switch might read uninitialized data CVE-2022-39282 freerdp: clients using the /video command line...

7.5CVSS6AI score0.00985EPSS
Exploits0References10
euvd
euvd
added 2025/10/03 8:7 p.m.2 views

EUVD-2022-41800

Malicious code in bioql PyPI...

5.7CVSS5.4AI score0.00967EPSS
Exploits0References9
euvd
euvd
added 2025/10/03 8:7 p.m.3 views

EUVD-2022-41801

Malicious code in bioql PyPI...

4.6CVSS4.7AI score0.00627EPSS
Exploits0References7
redhat
redhat
added 2024/11/12 9:36 a.m.6 views

freerdp: OutOfBound Read in zgfx_decompress_segment

FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients that use a version of FreeRDP prior to 3.5.0 or 2.11.6 are vulnerable to out-of-bounds read. Versions 3.5.0 and 2.11.6 patch the issue. As a workaround, deactivate /gfx on by default, set /bpp or /rfx options...

9.8CVSS5.8AI score0.0195EPSS
Exploits1References5
redhat
redhat
added 2024/11/12 9:36 a.m.4 views

freerdp: zgfx_decompress out of memory

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.5.1, a malicious server can crash the FreeRDP client by sending invalid huge allocation size. Version 3.5.1 contains a patch for the issue. No known workarounds are available...

7.5CVSS5.8AI score0.01178EPSS
Exploits0References5
redhat
redhat
added 2024/04/30 10:33 a.m.3 views

freerdp: integer-Underflow leading to Out-Of-Bound Read in zgfx_decompress_segment

FreeRDP is a free implementation of the Remote Desktop Protocol RDP, released under the Apache license. Affected versions are subject to an Integer-Underflow leading to Out-Of-Bound Read in the zgfxdecompresssegment function. In the context of CopyMemory, it's possible to read data beyond the...

9.1CVSS5.7AI score0.01432EPSS
Exploits1References5
nessus
nessus
added 2024/01/12 12:0 a.m.64 views

GLSA-202401-16 : FreeRDP: Multiple Vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202401-16 FreeRDP: Multiple Vulnerabilities - FreeRDP is a free remote desktop protocol library and clients. In affected versions there is an out of bound read in ZGFX decoder component of FreeRDP. A malicious server can trick a...

9.8CVSS6.7AI score0.01529EPSS
Exploits17References27
bdu_fstec
bdu_fstec
added 2023/09/04 12:0 a.m.6 views

Vulnerability of the zgfx_decompress_segment() function in the RDP client FreeRDP, allowing a hacker to trigger a service failure

The vulnerability of the zgfxdecompresssegment function in the RDP client FreeRDP is related to the execution of operations outside the buffer boundaries in memory. Exploiting this vulnerability could allow a malicious actor to cause service failures remotely...

6.5CVSS7.2AI score0.01432EPSS
Exploits1References11Affected Software3
susecve
susecve
added 2023/09/02 1:54 a.m.3 views

SUSE CVE-2023-40181

FreeRDP is a free implementation of the Remote Desktop Protocol RDP, released under the Apache license. Affected versions are subject to an Integer-Underflow leading to Out-Of-Bound Read in the zgfxdecompresssegment function. In the context of CopyMemory, it's possible to read data beyond the...

5.3CVSS6.8AI score0.01432EPSS
Exploits1References5
osv
osv
added 2023/08/31 10:15 p.m.2 views

DEBIAN-CVE-2023-40181

FreeRDP is a free implementation of the Remote Desktop Protocol RDP, released under the Apache license. Affected versions are subject to an Integer-Underflow leading to Out-Of-Bound Read in the zgfxdecompresssegment function. In the context of CopyMemory, it's possible to read data beyond the...

9.1CVSS6.9AI score0.01432EPSS
Exploits1References1
osv
osv
added 2023/08/31 10:15 p.m.3 views

UBUNTU-CVE-2023-40181

FreeRDP is a free implementation of the Remote Desktop Protocol RDP, released under the Apache license. Affected versions are subject to an Integer-Underflow leading to Out-Of-Bound Read in the zgfxdecompresssegment function. In the context of CopyMemory, it's possible to read data beyond the...

9.1CVSS6.7AI score0.01432EPSS
Exploits1References6
cnnvd
cnnvd
added 2023/08/31 12:0 a.m.4 views

FreeRDP 数字错误漏洞

FreeRDP is an open source implementation of the Remote Desktop Protocol RDP from the FreeRDP team. FreeRDP suffers from a numeric error vulnerability that stems from an integer overflow in the zgfxdecompresssegment function that results in an out-of-bounds read...

9.1CVSS7.3AI score0.01432EPSS
Exploits1References11
ptsecurity
ptsecurity
added 2023/08/09 12:0 a.m.4 views

PT-2023-4664 · Freerdp +8 · Freerdp +8

Name of the Vulnerable Software and Affected Versions: FreeRDP versions prior to 2.11.0 FreeRDP versions prior to 3.0.0-beta3 Description: The issue is related to an Integer-Underflow leading to Out-Of-Bound Read in the zgfx decompress segment function. In the context of CopyMemory, it's possible...

9.8CVSS6.4AI score0.0375EPSS
Exploits25References315
Rows per page
Query Builder