Lucene search
Ubuntu.comUB:CVE-2022-23477HistoryDec 09, 2022 - 12:00 a.m.
CVE-2022-23477
2022-12-0900:00:00
ubuntu.com
ubuntu.com
16
xrdp
buffer overflow
audin_send_open
upgrade
security issue
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS
0.002
Percentile
57.6%
xrdp is an open source project which provides a graphical login to remote
machines using Microsoft Remote Desktop Protocol (RDP). xrdp < v0.9.21
contain a buffer over flow in audin_send_open() function. There are no
known workarounds for this issue. Users are advised to upgrade.
Bugs
Related
osv
osv
CVE-2022-23477
2022-12-09 18:15:13
libpainter0-0.9.20-4.1 on GA media
2024-06-15 00:00:00
xrdp - security update
2023-09-18 00:00:00
alpinelinux
alpinelinux
CVE-2022-23477
2022-12-09 18:15:13
veracode
veracode
Buffer Overflow
2022-12-24 14:04:59
nvd
nvd
CVE-2022-23477
2022-12-09 18:15:13
cve
cve
CVE-2022-23477
2022-12-09 18:15:13
debiancve
debiancve
CVE-2022-23477
2022-12-09 18:15:13
nessus
nessus
Fedora 36 : 1:xrdp (2022-08d2138578)
2022-12-23 00:00:00
Debian DSA-5502-1 : xrdp - security update
2023-09-19 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2023-2085
2023-02-02 08:13:45
Advisory ROSA-SA-2023-2249
2023-10-21 13:15:43
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2023:0151-1)
2023-01-27 00:00:00
openSUSE: Security Advisory for xrdp (SUSE-SU-2023:0151-1)
2024-03-04 00:00:00
Mageia: Security Advisory (MGASA-2023-0002)
2023-03-28 00:00:00
cvelist
cvelist
CVE-2022-23477 Buffer Overflow in xrdp
2022-12-09 17:51:32
prion
prion
Buffer overflow
2022-12-09 18:15:00
fedora
fedora
[SECURITY] Fedora 36 Update: xrdp-0.9.21-1.fc36
2022-12-21 01:18:14
[SECURITY] Fedora 37 Update: xrdp-0.9.21-1.fc37
2022-12-21 01:28:50
redos
redos
ROS-20221222-01
2022-12-22 00:00:00
debian
debian
[SECURITY] [DSA 5502-1] xrdp security update
2023-09-18 21:42:53
mageia
mageia
Updated xrdp packages fix security vulnerability
2023-01-13 20:37:09
freebsd
freebsd
xrdp -- multiple vulnerabilities
2022-12-01 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 10 package xrdp version 0.9.21-alt1
2022-12-21 00:00:00
ubuntu
ubuntu
xrdp vulnerabilities
2023-11-08 00:00:00
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS
0.002
Percentile
57.6%
Related for UB:CVE-2022-23477