freerdp · threatengine.sh

CVE-2026-40254

< 3.25.0

FreeRDP is a free implementation of the Remote Desktop Protocol. Versions prior to 3.25.0 have an off-by-one in the path traversal

4.2MEDIUM

CVE-2026-33995

< 3.24.2

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, a double-free vulnerability in kerberos_

5.3MEDIUM

CVE-2026-33987

< 3.24.2

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, in persistent_cache_read_entry_v3() in l

7.1HIGH

CVE-2026-33986

< 3.24.2

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, in yuv_ensure_buffer() in libfreerdp/cod

7.5HIGH

CVE-2026-33985

< 3.24.2

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, pixel data from adjacent heap memory is

5.9MEDIUM

CVE-2026-33984

< 3.24.2

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, in resize_vbar_entry() in libfreerdp/cod

7.5HIGH

CVE-2026-33983

< 3.24.2

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, progressive_decompress_tile_upgrade() de

6.5MEDIUM

CVE-2026-33982

< 3.24.2

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, there is a heap-buffer-overflow READ vul

7.1HIGH

CVE-2026-33977

< 3.24.2

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, a malicious RDP server can crash the Fre

6.5MEDIUM

CVE-2026-33952

< 3.24.2

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, an unvalidated auth_length field read fr

6.5MEDIUM

CVE-2026-31897

< 3.24.0

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, there is an out-of-bounds read in freerdp_bitmap

NONE

CVE-2026-31885

< 3.24.0

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, there is an out-of-bounds read in MS-ADPCM and I

6.5MEDIUM

CVE-2026-31884

< 3.24.0

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, division by zero in MS-ADPCM and IMA-ADPCM decod

6.5MEDIUM

CVE-2026-31883

< 3.24.0

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, a size_t underflow in the IMA-ADPCM and MS-ADPCM

6.5MEDIUM

CVE-2026-31806

< 3.24.0

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, the gdi_surface_bits() function processes SURFA

9.8CRITICAL

CVE-2026-29776

< 3.24.0

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, Integer Underflow in update_read_cache_bitmap_or

3.1LOW

CVE-2026-29775

< 3.24.0

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, a client-side heap out-of-bounds read/write occu

5.3MEDIUM

CVE-2026-29774

< 3.24.0

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.24.0, a client-side heap buffer overflow occurs in the

5.3MEDIUM

CVE-2026-27951

< 3.23.0

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, the function Stream_EnsureCapacity can

5.3MEDIUM

CVE-2026-27950

< 3.23.0

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, the fix for the heap-use-after-free desc

7.5HIGH

CVE-2026-26986

< 3.23.0

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, rail_window_free dereferences a freed

7.5HIGH

CVE-2026-27015

< 3.23.0

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, a missing bounds check in `smartcard_unp

6.5MEDIUM

CVE-2026-26965

< 3.23.0

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, in the RLE planar decode path, `planar_d

8.8HIGH

CVE-2026-26955

< 3.23.0

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, a malicious RDP server can trigger a hea

8.8HIGH

CVE-2026-26271

< 3.23.0

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, a buffer overread in `freerdp_image_copy

5.3MEDIUM

CVE-2026-25997

< 3.23.0

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, xf_clipboard_format_equal reads freed

9.8CRITICAL

CVE-2026-25959

< 3.23.0

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, xf_cliprdr_provide_data_ passes freed

9.8CRITICAL

CVE-2026-25955

< 3.23.0

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, xf_AppUpdateWindowFromSurface reuses a

9.8CRITICAL

CVE-2026-25954

< 3.23.0

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, xf_rail_server_local_move_size derefer

7.5HIGH

CVE-2026-25953

< 3.23.0

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, xf_AppUpdateWindowFromSurface reads fr

9.8CRITICAL

CVE-2026-25952

< 3.23.0

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, xf_SetWindowMinMaxInfo dereferences a

9.8CRITICAL

CVE-2026-25942

< 3.23.0

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.23.0, xf_rail_server_execute_result indexes

7.5HIGH

CVE-2026-25941

>= 2.0.0 and < 2.11.8

FreeRDP is a free implementation of the Remote Desktop Protocol. Versions on the 2.x branch prior to 2.11.8 and on the 3.x bran

4.3MEDIUM

CVE-2026-24684

< 3.22.0

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, the RDPSND async playback thread can process que

7.5HIGH

CVE-2026-24683

< 3.22.0

FreeRDP is a free implementation of the Remote Desktop Protocol. ainput_send_input_event caches channel_callback in a local variab

7.5HIGH

CVE-2026-24682

< 3.22.0

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, audin_server_recv_formats frees an incorrect num

7.5HIGH

CVE-2026-24681

< 3.22.0

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, aAsynchronous bulk transfer completions can use

7.5HIGH

CVE-2026-24680

< 3.22.0

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, sdl_Pointer_New frees data on failure, then poin

7.5HIGH

CVE-2026-24679

< 3.22.0

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, The URBDRC client uses server-supplied interface

9.1CRITICAL

CVE-2026-24678

< 3.22.0

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, A capture thread sends sample responses using a

7.5HIGH

CVE-2026-24677

< 3.22.0

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, ecam_encoder_compress_h264 trusts server-control

9.1CRITICAL

CVE-2026-24676

< 3.22.0

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, AUDIN format renegotiation frees the active form

7.5HIGH

CVE-2026-24675

< 3.22.0

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, urb_select_interface can free the device's MS co

7.5HIGH

CVE-2026-24491

< 3.22.0

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, video_timer can send client notifications after

7.5HIGH

CVE-2026-23948

< 3.22.0

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, a NULL pointer dereference vulnerability in rdp_

7.5HIGH

CVE-2026-23884

< 3.21.0

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0, offscreen bitmap deletion leaves `gdi-dr

9.8CRITICAL

CVE-2026-23883

< 3.21.0

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0, xf_Pointer_New frees cursorPixels on

9.8CRITICAL

CVE-2026-23732

< 3.21.0

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0, FastGlyph parsing trusts cbData/remain

7.5HIGH

CVE-2026-23534

< 3.21.0

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0, a client-side heap buffer overflow occur

9.8CRITICAL

CVE-2026-23533

< 3.21.0

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0, a client-side heap buffer overflow occur

9.8CRITICAL

CVE-2026-23532

< 3.21.0

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0, a client-side heap buffer overflow occur

9.8CRITICAL

CVE-2026-23531

< 3.21.0

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0, in ClearCodec, when glyphData is prese

9.8CRITICAL

CVE-2026-23530

< 3.21.0

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.21.0,freerdp_bitmap_decompress_planar does n

9.8CRITICAL

CVE-2026-22859

< 3.20.1

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, the URBDRC client does not perform bounds checki

9.1CRITICAL

CVE-2026-22858

< 3.20.1

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, global-buffer-overflow was observed in FreeRDP's

9.1CRITICAL

CVE-2026-22857

< 3.20.1

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, a heap use-after-free occurs in irp_thread_func

9.8CRITICAL

CVE-2026-22856

< 3.20.1

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, a race in the serial channel IRP thread tracking

8.1HIGH

CVE-2026-22855

< 3.20.1

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, a heap out-of-bounds read occurs in the smartcar

9.1CRITICAL

CVE-2026-22854

< 3.20.1

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, a heap-buffer-overflow occurs in drive read when

9.8CRITICAL

CVE-2026-22853

< 3.20.1

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, RDPEAR’s NDR array reader does not perform bou

9.8CRITICAL

CVE-2026-22852

< 3.20.1

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, a malicious RDP server can trigger a heap-buffer

9.8CRITICAL

CVE-2026-22851

< 3.20.1

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, a race condition between the RDPGFX dynamic virt

5.9MEDIUM

CVE-2025-68118

< 3.20.0

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.20.0, a vulnerability exists in FreeRDP’s ce

9.1CRITICAL

CVE-2025-4478

>= 3.0.0 and < 3.16.0

A flaw was found in the FreeRDP used by Anaconda's remote install feature, where a crafted RDP packet could trigger a segmentation

6.5MEDIUM

CVE-2024-32662

< 3.5.1

FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients prior to version 3.5.1 are vulnerable to ou

7.5HIGH

CVE-2024-32661

< 3.5.1

FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients prior to version 3.5.1 are vulnerable to a

7.5HIGH

CVE-2024-32660

< 2.11.7

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.5.1, a malicious server can crash the FreeRDP

7.5HIGH

CVE-2024-32659

< 2.11.7

FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients prior to version 3.5.1 are vulnerable to ou

9.8CRITICAL

CVE-2024-32658

< 2.11.7

FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients prior to version 3.5.1 are vulnerable to ou

9.8CRITICAL

CVE-2024-32460

< 2.11.6

FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients using /bpp:32 legacy GDI drawing

8.1HIGH

CVE-2024-32459

< 2.11.6

FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients and servers that use a version of FreeRDP p

9.8CRITICAL

CVE-2024-32458

< 2.11.6

FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients that use a version of FreeRDP prior to 3.5.

9.8CRITICAL

CVE-2024-32041

< 2.11.6

FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients that use a version of FreeRDP prior to 3.5.

9.8CRITICAL

CVE-2024-32040

< 2.11.6

FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients that use a version of FreeRDP prior to 3.5.

8.1HIGH

CVE-2024-32039

< 2.11.6

FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients using a version of FreeRDP prior to 3.5.0 o

9.8CRITICAL

CVE-2024-22211

< 2.11.5

FreeRDP is a set of free and open source remote desktop protocol library and clients. In affected versions an integer overflow in

3.7LOW

CVE-2023-40576

all versions

FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. Affected versions are su

5.3MEDIUM

CVE-2023-40575

all versions

FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. Affected versions are su

5.3MEDIUM

CVE-2023-40574

all versions

FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. Affected versions are su

6.5MEDIUM

CVE-2023-40569

< 2.11.0

FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. Affected versions are su

6.5MEDIUM

CVE-2023-40567

< 2.11.0

FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. Affected versions are su

6.5MEDIUM

CVE-2023-40188

< 2.11.0

FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. Affected versions are su

5.3MEDIUM

CVE-2023-40187

all versions

FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. Affected versions of the

7.3HIGH

CVE-2023-40186

< 2.11.0

FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. Affected versions are su

6.5MEDIUM

CVE-2023-40181

< 2.11.0

FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. Affected versions are su

5.3MEDIUM

CVE-2023-39356

< 2.11.0

FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. In affected versions a m

5.3MEDIUM

CVE-2023-39353

< 2.11.0

FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. Affected versions are su

5.3MEDIUM

CVE-2023-39352

< 2.11.0

FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. Affected versions are su

5.3MEDIUM

CVE-2023-39355

all versions

FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. Versions of FreeRDP on t

7.0HIGH

CVE-2023-39354

< 2.11.0

FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. Affected versions are su

5.9MEDIUM

CVE-2023-39351

< 2.11.0

FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. Affected versions of Fre

5.3MEDIUM

CVE-2023-39350

< 2.11.0

FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. This issue affects Clien

5.9MEDIUM

CVE-2023-40589

< 2.11.0

FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. In affected versions the

4.3MEDIUM

CVE-2022-39319

< 2.9.0

FreeRDP is a free remote desktop protocol library and clients. Affected versions of FreeRDP are missing input length validation in

4.6MEDIUM

CVE-2022-39318

< 2.9.0

FreeRDP is a free remote desktop protocol library and clients. Affected versions of FreeRDP are missing input validation in `urbdr

4.8MEDIUM

CVE-2022-39317

< 2.9.0

FreeRDP is a free remote desktop protocol library and clients. Affected versions of FreeRDP are missing a range check for input of

4.6MEDIUM

CVE-2022-41877

< 2.9.0

FreeRDP is a free remote desktop protocol library and clients. Affected versions of FreeRDP are missing input length validation in

4.6MEDIUM

CVE-2022-39347

< 2.9.0

FreeRDP is a free remote desktop protocol library and clients. Affected versions of FreeRDP are missing path canonicalization and

2.6LOW

CVE-2022-39320

< 2.9.0

FreeRDP is a free remote desktop protocol library and clients. Affected versions of FreeRDP may attempt integer addition on too na

5.5MEDIUM

CVE-2022-39316

< 2.9.0

FreeRDP is a free remote desktop protocol library and clients. In affected versions there is an out of bound read in ZGFX decoder

4.8MEDIUM

CVE-2022-39283

< 2.8.1

FreeRDP is a free remote desktop protocol library and clients. All FreeRDP based clients when using the /video command line swit

5.9MEDIUM

CVE-2022-39282

< 2.8.1

FreeRDP is a free remote desktop protocol library and clients. FreeRDP based clients on unix systems using /parallel command lin

3.5LOW

CVE-2022-24883

< 2.7.0

FreeRDP is a free implementation of the Remote Desktop Protocol (RDP). Prior to version 2.7.0, server side authentication against

7.4HIGH

CVE-2022-24882

< 2.7.0

FreeRDP is a free implementation of the Remote Desktop Protocol (RDP). In versions prior to 2.7.0, NT LAN Manager (NTLM) authentic

9.1CRITICAL

CVE-2021-41160

< 2.4.1

FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. In affected versions a m

5.3MEDIUM

CVE-2021-41159

< 2.4.1

FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. All FreeRDP clients prio

5.8MEDIUM

CVE-2021-37595

< 2.4.0

In FreeRDP before 2.4.0 on Windows, wf_cliprdr_server_file_contents_request in client/Windows/wf_cliprdr.c has missing input check

9.8CRITICAL

CVE-2021-37594

< 2.4.0

In FreeRDP before 2.4.0 on Windows, wf_cliprdr_server_file_contents_request in client/Windows/wf_cliprdr.c has missing input check

9.8CRITICAL

CVE-2020-15103

<= 2.1.2

In FreeRDP less than or equal to 2.1.2, an integer overflow exists due to missing input sanitation in rdpegfx channel. All FreeRDP

3.5LOW

CVE-2020-4033

< 2.1.2

In FreeRDP before version 2.1.2, there is an out of bounds read in RLEDECOMPRESS. All FreeRDP based clients with sessions with col

3.1LOW

CVE-2020-4032

< 2.1.2

In FreeRDP before version 2.1.2, there is an integer casting vulnerability in update_recv_secondary_order. All clients with +glyph

3.1LOW

CVE-2020-4031

< 2.1.2

In FreeRDP before version 2.1.2, there is a use-after-free in gdi_SelectObject. All FreeRDP clients using compatibility mode with

3.5LOW

CVE-2020-4030

< 2.1.2

In FreeRDP before version 2.1.2, there is an out of bounds read in TrioParse. Logging might bypass string length checks due to an

3.5LOW

CVE-2020-11099

< 2.1.2

In FreeRDP before version 2.1.2, there is an out of bounds read in license_read_new_or_upgrade_license_packet. A manipulated licen

3.5LOW

CVE-2020-11098

< 2.1.2

In FreeRDP before version 2.1.2, there is an out-of-bound read in glyph_cache_put. This affects all FreeRDP clients with `+glyph-c

3.5LOW

CVE-2020-11097

< 2.1.2

In FreeRDP before version 2.1.2, an out of bounds read occurs resulting in accessing a memory location that is outside of the boun

3.5LOW

CVE-2020-11096

< 2.1.2

In FreeRDP before version 2.1.2, there is a global OOB read in update_read_cache_bitmap_v3_order. As a workaround, one can disable

3.5LOW

CVE-2020-11095

< 2.1.2

In FreeRDP before version 2.1.2, an out of bound reads occurs resulting in accessing a memory location that is outside of the boun

3.5LOW

CVE-2020-11089

< 2.1.0

In FreeRDP before 2.1.0, there is an out-of-bound read in irp functions (parallel_process_irp_create, serial_process_irp_create, d

3.7LOW

CVE-2020-11088

< 2.1.0

In FreeRDP less than or equal to 2.0.0, there is an out-of-bound read in ntlm_read_NegotiateMessage. This has been fixed in 2.1.0.

3.1LOW

CVE-2020-11087

< 2.1.0

In FreeRDP less than or equal to 2.0.0, there is an out-of-bound read in ntlm_read_AuthenticateMessage. This has been fixed in 2.1

3.1LOW

CVE-2020-11086

< 2.1.0

In FreeRDP less than or equal to 2.0.0, there is an out-of-bound read in ntlm_read_ntlm_v2_client_challenge that reads up to 28 by

3.1LOW

CVE-2020-11085

< 2.1.0

In FreeRDP before 2.1.0, there is an out-of-bounds read in cliprdr_read_format_list. Clipboard format data read (by client or serv

2.6LOW

CVE-2020-11043

< 2.1.0

In FreeRDP less than or equal to 2.0.0, there is an out-of-bounds read in rfx_process_message_tileset. Invalid data fed to RFX dec

2.2LOW

CVE-2020-11040

< 2.1.0

In FreeRDP less than or equal to 2.0.0, there is an out-of-bound data read from memory in clear_decompress_subcode_rlex, visualize

2.2LOW

CVE-2020-11041

< 2.1.0

In FreeRDP less than or equal to 2.0.0, an outside controlled array index is used unchecked for data used as configuration for sou

2.2LOW

CVE-2020-11039

< 2.1.0

In FreeRDP less than or equal to 2.0.0, when using a manipulated server with USB redirection enabled (nearly) arbitrary memory can

8.0HIGH

CVE-2020-11038

< 2.1.0

In FreeRDP less than or equal to 2.0.0, an Integer Overflow to Buffer Overflow exists. When using /video redirection, a manipulate

6.9MEDIUM

CVE-2020-11019

< 2.1.0

In FreeRDP less than or equal to 2.0.0, when running with logger set to "WLOG_TRACE", a possible crash of application could occur

4.3MEDIUM

CVE-2020-11018

<= 2.0.0

In FreeRDP less than or equal to 2.0.0, a possible resource exhaustion vulnerability can be performed. Malicious clients could tri

6.5MEDIUM

CVE-2020-11017

< 2.1.0

In FreeRDP less than or equal to 2.0.0, by providing manipulated input a malicious client can create a double free condition and c

6.5MEDIUM

CVE-2020-13398

< 2.1.1

An issue was discovered in FreeRDP before 2.1.1. An out-of-bounds (OOB) write vulnerability has been detected in crypto_rsa_common

8.3HIGH

CVE-2020-13397

< 2.1.1

An issue was discovered in FreeRDP before 2.1.1. An out-of-bounds (OOB) read vulnerability has been detected in security_fips_decr

5.5MEDIUM

CVE-2020-13396

< 2.1.1

An issue was discovered in FreeRDP before 2.1.1. An out-of-bounds (OOB) read vulnerability has been detected in ntlm_read_Challeng

7.1HIGH

CVE-2020-11526

> 1.1.0 and < 2.0.0

libfreerdp/core/update.c in FreeRDP versions > 1.1 through 2.0.0-rc4 has an Out-of-bounds Read.

2.2LOW

CVE-2020-11525

> 1.0.0 and <= 2.0.0

libfreerdp/cache/bitmap.c in FreeRDP versions > 1.0 through 2.0.0-rc4 has an Out of bounds read.

2.2LOW

CVE-2020-11524

> 1.0.0 and < 2.0.0

libfreerdp/codec/interleaved.c in FreeRDP versions > 1.0 through 2.0.0-rc4 has an Out-of-bounds Write.

6.6MEDIUM

CVE-2020-11523

> 1.0.0 and < 2.0.0

libfreerdp/gdi/region.c in FreeRDP versions > 1.0 through 2.0.0-rc4 has an Integer Overflow.

6.6MEDIUM

CVE-2020-11522

> 1.0.0 and < 2.0.0

libfreerdp/gdi/gdi.c in FreeRDP > 1.0 through 2.0.0-rc4 has an Out-of-bounds Read.

6.5MEDIUM

CVE-2020-11521

> 1.0.0 and < 2.0.0

libfreerdp/codec/planar.c in FreeRDP version > 1.0 through 2.0.0-rc4 has an Out-of-bounds Write.

6.6MEDIUM

CVE-2020-11058

> 1.1.0 and <= 2.0.0

In FreeRDP after 1.1 and before 2.0.0, a stream out-of-bounds seek in rdp_read_font_capability_set could lead to a later out-of-bo

2.2LOW

CVE-2020-11049

> 1.1.0 and < 2.0.0

In FreeRDP after 1.1 and before 2.0.0, there is an out-of-bound read of client memory that is then passed on to the protocol parse

5.5MEDIUM

CVE-2020-11048

>= 1.0.0 and < 2.0.0

In FreeRDP after 1.0 and before 2.0.0, there is an out-of-bounds read. It only allows to abort a session. No data extraction is po

2.2LOW

CVE-2020-11047

> 1.1.0 and < 2.0.0

In FreeRDP after 1.1 and before 2.0.0, there is an out-of-bounds read in autodetect_recv_bandwidth_measure_results. A malicious se

5.5MEDIUM

CVE-2020-11046

> 1.0.0 and < 2.0.0

In FreeRDP after 1.0 and before 2.0.0, there is a stream out-of-bounds seek in update_read_synchronize that could lead to a later

5.5MEDIUM

CVE-2020-11045

>= 1.1.0 and < 2.0.0

In FreeRDP after 1.0 and before 2.0.0, there is an out-of-bound read in update_read_bitmap_data that allows client memory to be

2.2LOW

CVE-2020-11044

> 1.2.0 and < 2.0.0

In FreeRDP greater than 1.2 and before 2.0.0, a double free in update_read_cache_bitmap_v3_order crashes the client application if

2.2LOW

CVE-2020-11042

> 1.1.0 and < 2.0.0

In FreeRDP greater than 1.1 and before 2.0.0, there is an out-of-bounds read in update_read_icon_info. It allows reading a attacke

5.5MEDIUM

CVE-2019-17178

<= 1.0.2

HuffmanTree_makeFromFrequencies in lodepng.c in LodePNG through 2019-09-28, as used in WinPR in FreeRDP and other products, has a

7.5HIGH

CVE-2019-17177

<= 1.0.2

libfreerdp/codec/region.c in FreeRDP through 1.1.x and 2.x through 2.0.0-rc4 has memory leaks because a supplied realloc pointer (

7.5HIGH

CVE-2018-1000852

< 2.0.0

FreeRDP 2.0.0-rc3 released version before commit 205c612820dac644d665b5bb1cdf437dc5ca01e3 contains a Other/Unknown vulnera

6.5MEDIUM

CVE-2018-8789

<= 1.2.0

FreeRDP prior to version 2.0.0-rc4 contains several Out-Of-Bounds Reads in the NTLM Authentication module that results in a Denial

7.5HIGH

CVE-2018-8788

<= 1.2.0

FreeRDP prior to version 2.0.0-rc4 contains an Out-Of-Bounds Write of up to 4 bytes in function nsc_rle_decode() that results in a

9.8CRITICAL

CVE-2018-8787

<= 1.2.0

FreeRDP prior to version 2.0.0-rc4 contains an Integer Overflow that leads to a Heap-Based Buffer Overflow in function gdi_Bitmap_

9.8CRITICAL

CVE-2018-8786

<= 1.2.0

FreeRDP prior to version 2.0.0-rc4 contains an Integer Truncation that leads to a Heap-Based Buffer Overflow in function update_re

9.8CRITICAL

CVE-2018-8785

<= 1.2.0

FreeRDP prior to version 2.0.0-rc4 contains a Heap-Based Buffer Overflow in function zgfx_decompress() that results in a memory co

9.8CRITICAL

CVE-2018-8784

<= 1.2.0

FreeRDP prior to version 2.0.0-rc4 contains a Heap-Based Buffer Overflow in function zgfx_decompress_segment() that results in a m

9.8CRITICAL

CVE-2017-2839

all versions

An exploitable denial of service vulnerability exists within the handling of challenge packets in FreeRDP 2.0.0-beta1+android11. A

5.9MEDIUM

CVE-2017-2838

all versions

An exploitable denial of service vulnerability exists within the handling of challenge packets in FreeRDP 2.0.0-beta1+android11. A

5.9MEDIUM

CVE-2017-2837

all versions

An exploitable denial of service vulnerability exists within the handling of security data in FreeRDP 2.0.0-beta1+android11. A spe

5.9MEDIUM

CVE-2017-2836

all versions

An exploitable denial of service vulnerability exists within the reading of proprietary server certificates in FreeRDP 2.0.0-beta1

5.9MEDIUM

CVE-2017-2835

all versions

An exploitable code execution vulnerability exists in the RDP receive functionality of FreeRDP 2.0.0-beta1+android11. A specially

8.1HIGH

CVE-2017-2834

all versions

An exploitable code execution vulnerability exists in the authentication functionality of FreeRDP 2.0.0-beta1+android11. A special

7.0HIGH

CVE-2013-4119

<= 1.0.2

FreeRDP before 1.1.0-beta+2013071101 allows remote attackers to cause a denial of service (NULL pointer dereference and applicatio

7.5HIGH

CVE-2013-4118

<= 1.0.2

FreeRDP before 1.1.0-beta1 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) v

7.5HIGH

CVE-2014-0250

all versions

Multiple integer overflows in client/X11/xf_graphics.c in FreeRDP allow remote attackers to have an unspecified impact via the wid

CVE-2014-0791

all versions

Integer overflow in the license_read_scope_list function in libfreerdp/core/license.c in FreeRDP through 1.0.2 allows remote RDP s