VUMETRIC
CYBER PORTAL
Dashboard
Security News
Latest Vulnerabilities
Browse Vulnerabilities
by Vendors
by Products
by Categories
Weekly Reports
Vulnerabilities
>
Neutrinolabs
>
Xrdp
> 0.9.3.1
Exclude new CVEs:
DATE
CVE
VULNERABILITY TITLE
RISK
2022-12-09
CVE-2022-23483
xrdp is an open source project which provides a graphical login to remote machines using Microsoft Remote Desktop Protocol (RDP). xrdp < v0.9.21 contain a Out of Bound Read in libxrdp_send_to_channel() function.
network
low complexity
neutrinolabs
debian
critical
9.1
9.1
2022-12-09
CVE-2022-23484
xrdp is an open source project which provides a graphical login to remote machines using Microsoft Remote Desktop Protocol (RDP). xrdp < v0.9.21 contain a Integer Overflow in xrdp_mm_process_rail_update_window_text() function.
network
low complexity
neutrinolabs
debian
critical
9.8
9.8
2022-12-09
CVE-2022-23493
xrdp is an open source project which provides a graphical login to remote machines using Microsoft Remote Desktop Protocol (RDP). xrdp < v0.9.21 contain a Out of Bound Read in xrdp_mm_trans_process_drdynvc_channel_close() function.
network
low complexity
neutrinolabs
debian
critical
9.1
9.1
2020-06-30
CVE-2020-4044
Unspecified vulnerability in Neutrinolabs Xrdp
The xrdp-sesman service before version 0.9.13.1 can be crashed by connecting over port 3350 and supplying a malicious payload.
local
low complexity
neutrinolabs
7.8
7.8
2017-11-23
CVE-2017-16927
Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products
The scp_v0s_accept function in sesman/libscp/libscp_v0.c in the session manager in xrdp through 0.9.4 uses an untrusted integer as a write length, which allows local users to cause a denial of service (buffer overflow and application crash) or possibly have unspecified other impact via a crafted input stream.
local
low complexity
neutrinolabs
debian
CWE-119
8.4
8.4
«
Previous
1
2
(current)
»