Published: 09/12/2022 Updated: 24/10/2023

CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9

VMScore: 0

xrdp is an open source project which provides a graphical login to remote machines using Microsoft Remote Desktop Protocol (RDP). xrdp < v0.9.21 contain a buffer over flow in xrdp_mm_chan_data_in() function. There are no known workarounds for this issue. Users are advised to upgrade.

Vulnerable Product	Search on Vulmon	Subscribe to Product
neutrinolabs xrdp
debian debian linux 11.0

Debian Bug report logs - #1025879 xrdp: CVE-2022-23468 CVE-2022-23477 CVE-2022-23478 CVE-2022-23479 CVE-2022-23480 CVE-2022-23481 CVE-2022-23482 CVE-2022-23483 CVE-2022-23484 CVE-2022-23493 Package: src:xrdp; Maintainer for src:xrdp is Debian Remote Maintainers <debian-remote@listsdebianorg>; Reported by: Salvatore Bonaccor ...

Multiple security vulnerabilities have been found in xrdp, a remote desktop protocol server Buffer overflows and out-of-bound writes may cause a denial of service or other unspecified impact For the oldstable distribution (bullseye), these problems have been fixed in version 09211-1~deb11u1 We recommend that you upgrade your xrdp packages Fo ...

Introduction 이 README에서는 xrdp-chansrv에서 발견한 취약점 하나 (CVE-2022-23480)와, xrdp에서 발견한 취약점 2개(CVE-2022-23483, CVE-2022-23479)를 소개하고, 이를 이용해 Privilege Escalation까지 도달한 과정을 설명할 것이다 What is xrdp? xrdp는 오픈소스로 운영되는 RDP 서버이다 UNIX-like OS에서 RDP server를 구현�

CWE-120 https://github.com/neutrinolabs/xrdp/security/advisories/GHSA-pgx2-3fjj-fqqh https://www.debian.org/security/2023/dsa-5502 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1025879 https://nvd.nist.gov https://www.debian.org/security/2023/dsa-5502

CVE-2022-23479

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

Github Repositories

References

Vulmon Search

About

Products

Connect