CVE search results

271 – 280 of 32161 results

Detailed view

Sort by:

Status is adjusted based on your filters.

CVE-2026-25639

Medium priority

Needs evaluation

Axios is a promise based HTTP client for the browser and Node.js. Prior to 1.13.5, the mergeConfig function in axios crashes with a TypeError when processing configuration objects containing __proto__ as an own property. An...

1 affected package

node-axios

Package	24.04 LTS
node-axios	Needs evaluation

CVE-2026-2245

Medium priority

Needs evaluation

A vulnerability was identified in CCExtractor up to 183. This affects the function parse_PAT/parse_PMT in the library src/lib_ccx/ts_tables.c of the component MPEG-TS File Parser. Such manipulation leads to out-of-bounds read. The...

1 affected package

ccextractor

Package	24.04 LTS
ccextractor	Needs evaluation

CVE-2026-24684

Medium priority

Fixed

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, the RDPSND async playback thread can process queued PDUs after the channel is closed and internal state is freed, leading to a use after free in...

3 affected packages

freerdp, freerdp2, freerdp3

Package	24.04 LTS
freerdp	Not in release
freerdp2	Fixed
freerdp3	Fixed

CVE-2026-24683

Medium priority

Fixed

FreeRDP is a free implementation of the Remote Desktop Protocol. ainput_send_input_event caches channel_callback in a local variable and later uses it without synchronization; a concurrent channel close can free or reinitialize...

3 affected packages

freerdp, freerdp2, freerdp3

Package	24.04 LTS
freerdp	Not in release
freerdp2	Fixed
freerdp3	Fixed

CVE-2026-24682

Medium priority

Fixed

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, audin_server_recv_formats frees an incorrect number of audio formats on parse failure (i + i), leading to out-of-bounds access...

3 affected packages

freerdp, freerdp2, freerdp3

Package	24.04 LTS
freerdp	Not in release
freerdp2	Fixed
freerdp3	Fixed

CVE-2026-24681

Medium priority

Fixed

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, aAsynchronous bulk transfer completions can use a freed channel callback after URBDRC channel close, leading to a use after free...

3 affected packages

freerdp, freerdp2, freerdp3

Package	24.04 LTS
freerdp	Not in release
freerdp2	Fixed
freerdp3	Fixed

CVE-2026-24680

Medium priority

Fixed

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, sdl_Pointer_New frees data on failure, then pointer_free calls sdl_Pointer_Free and frees it again, triggering ASan UAF. This vulnerability is fixed...

3 affected packages

freerdp, freerdp2, freerdp3

Package	24.04 LTS
freerdp	Not in release
freerdp2	Not affected
freerdp3	Fixed

CVE-2026-24679

Medium priority

Fixed

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, The URBDRC client uses server-supplied interface numbers as array indices without bounds checks, causing an out-of-bounds read...

3 affected packages

freerdp, freerdp2, freerdp3

Package	24.04 LTS
freerdp	Not in release
freerdp2	Fixed
freerdp3	Fixed

CVE-2026-24678

Medium priority

Not affected

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, A capture thread sends sample responses using a freed channel callback after a device channel close, leading to a use after free...

3 affected packages

freerdp, freerdp2, freerdp3

Package	24.04 LTS
freerdp	Not in release
freerdp2	Not affected
freerdp3	Not affected

CVE-2026-24677

Medium priority

Not affected

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, ecam_encoder_compress_h264 trusts server-controlled dimensions and does not validate the source buffer size, leading to an out-of-bounds read in...

3 affected packages

freerdp, freerdp2, freerdp3

Package	24.04 LTS
freerdp	Not in release
freerdp2	Not affected
freerdp3	Not affected

Export to JSON

Results by page:

Search CVE reports