exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 8

BDU:2023-05079

почти 2 года назад

Уязвимость RDP-клиента FreeRDP, связанная с целочисленным переполнением, позволяющая нарушителю вызвать отказ в обслуживании

CVSS3: 5.9

EPSS: Низкий

CVE-2023-39350

почти 2 года назад

FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. This issue affects Clients only. Integer underflow leading to DOS (e.g. abort due to `WINPR_ASSERT` with default compilation flags). When an insufficient blockLen is provided, and proper length validation is not performed, an Integer Underflow occurs, leading to a Denial of Service (DOS) vulnerability. This issue has been addressed in versions 2.11.0 and 3.0.0-beta3. Users are advised to upgrade. There are no known workarounds for this vulnerability.

CVSS3: 5.9

EPSS: Низкий

CVE-2023-39350

почти 2 года назад

CVSS3: 7.5

EPSS: Низкий

CVE-2023-39350

почти 2 года назад

CVSS3: 5.9

EPSS: Низкий

CVE-2023-39350

почти 2 года назад

FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), ...

CVSS3: 5.9

EPSS: Низкий

ELSA-2024-2208

больше 1 года назад

ELSA-2024-2208: freerdp security update (MODERATE)

EPSS: Низкий

SUSE-SU-2023:4893-1

больше 1 года назад

Security update for freerdp

EPSS: Низкий

SUSE-SU-2023:4611-1

больше 1 года назад

Security update for freerdp

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
BDU:2023-05079 Уязвимость RDP-клиента FreeRDP, связанная с целочисленным переполнением, позволяющая нарушителю вызвать отказ в обслуживании	CVSS3: 5.9	0% Низкий	почти 2 года назад
CVE-2023-39350 FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. This issue affects Clients only. Integer underflow leading to DOS (e.g. abort due to `WINPR_ASSERT` with default compilation flags). When an insufficient blockLen is provided, and proper length validation is not performed, an Integer Underflow occurs, leading to a Denial of Service (DOS) vulnerability. This issue has been addressed in versions 2.11.0 and 3.0.0-beta3. Users are advised to upgrade. There are no known workarounds for this vulnerability.	CVSS3: 5.9	0% Низкий	почти 2 года назад
CVE-2023-39350 FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. This issue affects Clients only. Integer underflow leading to DOS (e.g. abort due to `WINPR_ASSERT` with default compilation flags). When an insufficient blockLen is provided, and proper length validation is not performed, an Integer Underflow occurs, leading to a Denial of Service (DOS) vulnerability. This issue has been addressed in versions 2.11.0 and 3.0.0-beta3. Users are advised to upgrade. There are no known workarounds for this vulnerability.	CVSS3: 7.5	0% Низкий	почти 2 года назад
CVE-2023-39350 FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. This issue affects Clients only. Integer underflow leading to DOS (e.g. abort due to `WINPR_ASSERT` with default compilation flags). When an insufficient blockLen is provided, and proper length validation is not performed, an Integer Underflow occurs, leading to a Denial of Service (DOS) vulnerability. This issue has been addressed in versions 2.11.0 and 3.0.0-beta3. Users are advised to upgrade. There are no known workarounds for this vulnerability.	CVSS3: 5.9	0% Низкий	почти 2 года назад
CVE-2023-39350 FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), ...	CVSS3: 5.9	0% Низкий	почти 2 года назад
ELSA-2024-2208 ELSA-2024-2208: freerdp security update (MODERATE)			больше 1 года назад
SUSE-SU-2023:4893-1 Security update for freerdp			больше 1 года назад
SUSE-SU-2023:4611-1 Security update for freerdp			больше 1 года назад

Уязвимостей на страницу