Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2022-23484

Опубликовано: 09 дек. 2022
Источник: debian
EPSS Низкий

Описание

xrdp is an open source project which provides a graphical login to remote machines using Microsoft Remote Desktop Protocol (RDP). xrdp < v0.9.21 contain a Integer Overflow in xrdp_mm_process_rail_update_window_text() function. There are no known workarounds for this issue. Users are advised to upgrade.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
xrdpfixed0.9.21.1-1package

Примечания

  • https://github.com/neutrinolabs/xrdp/security/advisories/GHSA-rqfx-5fv8-q9c6

  • https://github.com/neutrinolabs/xrdp/commit/c2c6efb1d377be6baaa4acbc9d3700490fe92887

EPSS

Процентиль: 38%
0.00158
Низкий

Связанные уязвимости

ubuntu логотип

CVE-2022-23484

CVSS3: 8.2
ubuntu
больше 2 лет назад

xrdp is an open source project which provides a graphical login to remote machines using Microsoft Remote Desktop Protocol (RDP). xrdp < v0.9.21 contain a Integer Overflow in xrdp_mm_process_rail_update_window_text() function. There are no known workarounds for this issue. Users are advised to upgrade.

nvd логотип

CVE-2022-23484

CVSS3: 8.2
nvd
больше 2 лет назад

xrdp is an open source project which provides a graphical login to remote machines using Microsoft Remote Desktop Protocol (RDP). xrdp < v0.9.21 contain a Integer Overflow in xrdp_mm_process_rail_update_window_text() function. There are no known workarounds for this issue. Users are advised to upgrade.

fstec логотип

BDU:2022-07307

CVSS3: 9.8
fstec
больше 2 лет назад

Уязвимость функции xrdp_mm_process_rail_update_window_text() сервера XRDP, позволяющая нарушителю выполнить произвольный код

suse-cvrf логотип

SUSE-SU-2023:0387-1

suse-cvrf
больше 2 лет назад

Security update for xrdp

suse-cvrf логотип

SUSE-SU-2023:0340-1

suse-cvrf
больше 2 лет назад

Security update for xrdp

EPSS

Процентиль: 38%
0.00158
Низкий