Freerdp

Freerdp

104 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2023-40576

Exploit
  • EPSS 0.12%
  • Veröffentlicht 31.08.2023 22:15:08
  • Zuletzt bearbeitet 21.11.2024 08:19:44

FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. Affected versions are subject to an Out-Of-Bounds Read in the `RleDecompress` function. This Out-Of-Bounds Read occurs because FreeRDP processes...

9.1

CVE-2023-40181

Exploit
  • EPSS 0.2%
  • Veröffentlicht 31.08.2023 22:15:07
  • Zuletzt bearbeitet 03.11.2025 21:16:00

FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. Affected versions are subject to an Integer-Underflow leading to Out-Of-Bound Read in the `zgfx_decompress_segment` function. In the context of ...

9.1

CVE-2023-39353

Exploit
  • EPSS 0.08%
  • Veröffentlicht 31.08.2023 21:15:08
  • Zuletzt bearbeitet 03.11.2025 21:15:58

FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. Affected versions are subject to a missing offset validation leading to Out Of Bound Read. In the `libfreerdp/codec/rfx.c` file there is no offs...

9.1

CVE-2023-39356

Exploit
  • EPSS 0.15%
  • Veröffentlicht 31.08.2023 21:15:08
  • Zuletzt bearbeitet 03.11.2025 21:15:59

FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. In affected versions a missing offset validation may lead to an Out Of Bound Read in the function `gdi_multi_opaque_rect`. In particular there i...

9.8

CVE-2023-39352

Exploit
  • EPSS 0.14%
  • Veröffentlicht 31.08.2023 21:15:07
  • Zuletzt bearbeitet 03.11.2025 21:15:58

FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. Affected versions are subject to an invalid offset validation leading to Out Of Bound Write. This can be triggered when the values `rect->left` ...

7.5

CVE-2023-39350

Exploit
  • EPSS 0.33%
  • Veröffentlicht 31.08.2023 20:15:08
  • Zuletzt bearbeitet 03.11.2025 21:15:58

FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. This issue affects Clients only. Integer underflow leading to DOS (e.g. abort due to `WINPR_ASSERT` with default compilation flags). When an ins...

7.5

CVE-2023-39351

Exploit
  • EPSS 0.1%
  • Veröffentlicht 31.08.2023 20:15:08
  • Zuletzt bearbeitet 03.11.2025 21:15:58

FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. Affected versions of FreeRDP are subject to a Null Pointer Dereference leading a crash in the RemoteFX (rfx) handling. Inside the `rfx_process_...

7.5

CVE-2023-39354

Exploit
  • EPSS 0.21%
  • Veröffentlicht 31.08.2023 20:15:08
  • Zuletzt bearbeitet 03.11.2025 21:15:58

FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. Affected versions are subject to an Out-Of-Bounds Read in the `nsc_rle_decompress_data` function. The Out-Of-Bounds Read occurs because it proce...

9.8

CVE-2023-39355

Exploit
  • EPSS 0.28%
  • Veröffentlicht 31.08.2023 20:15:08
  • Zuletzt bearbeitet 21.11.2024 08:15:13

FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. Versions of FreeRDP on the 3.x release branch before beta3 are subject to a Use-After-Free in processing `RDPGFX_CMDID_RESETGRAPHICS` packets. I...

7.5

CVE-2023-40589

Exploit
  • EPSS 0.15%
  • Veröffentlicht 31.08.2023 19:15:11
  • Zuletzt bearbeitet 03.11.2025 21:16:01

FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. In affected versions there is a Global-Buffer-Overflow in the ncrush_decompress function. Feeding crafted input into this function can trigger t...