Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
freerdp vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-0791
Integer overflow in the license_read_scope_list function in libfreerdp/core/license.c in FreeRDP up to and including 1.0.2 allows remote RDP servers to cause a denial of service (application crash) or possibly have unspecified other impact via a large ScopeCount value in a Scope ...
Freerdp Freerdp 1.0.2
Freerdp Freerdp 1.0.0
Freerdp Freerdp 1.0.1
7.5
CVSSv3
CVE-2019-17177
libfreerdp/codec/region.c in FreeRDP up to and including 1.1.x and 2.x up to and including 2.0.0-rc4 has memory leaks because a supplied realloc pointer (i.e., the first argument to realloc) is also used for a realloc return value.
Freerdp Freerdp 2.0.0
Freerdp Freerdp 1.1.0
Freerdp Freerdp
Opensuse Leap 15.0
Opensuse Leap 15.1
NA
CVE-2014-0250
Multiple integer overflows in client/X11/xf_graphics.c in FreeRDP allow remote malicious users to have an unspecified impact via the width and height to the (1) xf_Pointer_New or (2) xf_Bitmap_Decompress function, which causes an incorrect amount of memory to be allocated.
Freerdp Freerdp 1.0.2
Freerdp Freerdp 1.0.0
Freerdp Freerdp 1.0.1
Opensuse Opensuse 12.3
Opensuse Opensuse 13.1
7.5
CVSSv3
CVE-2019-17178
HuffmanTree_makeFromFrequencies in lodepng.c in LodePNG through 2019-09-28, as used in WinPR in FreeRDP and other products, has a memory leak because a supplied realloc pointer (i.e., the first argument to realloc) is also used for a realloc return value.
Freerdp Freerdp 1.1.0
Freerdp Freerdp
Lodev Lodepng
Opensuse Leap 15.0
Opensuse Leap 15.1
9.8
CVSSv3
CVE-2018-8784
FreeRDP prior to version 2.0.0-rc4 contains a Heap-Based Buffer Overflow in function zgfx_decompress_segment() that results in a memory corruption and probably even a remote code execution.
Freerdp Freerdp 2.0.0
Freerdp Freerdp
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 18.10
9.8
CVSSv3
CVE-2018-8785
FreeRDP prior to version 2.0.0-rc4 contains a Heap-Based Buffer Overflow in function zgfx_decompress() that results in a memory corruption and probably even a remote code execution.
Freerdp Freerdp 2.0.0
Freerdp Freerdp
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 18.10
7.5
CVSSv3
CVE-2013-4119
FreeRDP prior to 1.1.0-beta+2013071101 allows remote malicious users to cause a denial of service (NULL pointer dereference and application crash) by disconnecting before authentication has finished.
Freerdp Freerdp
9.8
CVSSv3
CVE-2021-37594
In FreeRDP prior to 2.4.0 on Windows, wf_cliprdr_server_file_contents_request in client/Windows/wf_cliprdr.c has missing input checks for a FILECONTENTS_SIZE File Contents Request PDU.
Freerdp Freerdp
9.8
CVSSv3
CVE-2021-37595
In FreeRDP prior to 2.4.0 on Windows, wf_cliprdr_server_file_contents_request in client/Windows/wf_cliprdr.c has missing input checks for a FILECONTENTS_RANGE File Contents Request PDU.
Freerdp Freerdp
9.8
CVSSv3
CVE-2024-22211
FreeRDP is a set of free and open source remote desktop protocol library and clients. In affected versions an integer overflow in `freerdp_bitmap_planar_context_reset` leads to heap-buffer overflow. This affects FreeRDP based clients. FreeRDP based server implementations and prox...
Freerdp Freerdp
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »