Known CVE vulnerabilities and GitHub Security Advisories affecting the SUSE:Linux Enterprise Workstation Extension 15 SP4 package freerdp, with affected version ranges, CVSS severity, EPSS exploit prediction, and CISA KEV status.
CVEs (28)
CVE-2022-24882 — CVSS 9.1 (critical): FreeRDP is a free implementation of the Remote Desktop Protocol (RDP). In versions prior to 2.7.0, NT LAN Manager (NTLM) authentication…
CVE-2022-24883 — CVSS 7.4 (high): FreeRDP is a free implementation of the Remote Desktop Protocol (RDP). Prior to version 2.7.0, server side authentication against a `SAM`…
CVE-2023-40186 — CVSS 6.5 (medium): FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. Affected versions are subject to…
CVE-2023-40574 — CVSS 6.5 (medium): FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. Affected versions are subject to…
CVE-2023-40569 — CVSS 6.5 (medium): FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. Affected versions are subject to…
CVE-2023-40567 — CVSS 6.5 (medium): FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. Affected versions are subject to…
CVE-2023-39350 — CVSS 5.9 (medium): FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. This issue affects Clients only…
CVE-2023-39354 — CVSS 5.9 (medium): FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. Affected versions are subject to…
CVE-2022-39283 — CVSS 5.9 (medium): FreeRDP is a free remote desktop protocol library and clients. All FreeRDP based clients when using the `/video` command line switch might…
CVE-2021-41159 — CVSS 5.8 (medium): FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. All FreeRDP clients prior to…
CVE-2022-39320 — CVSS 5.5 (medium): FreeRDP is a free remote desktop protocol library and clients. Affected versions of FreeRDP may attempt integer addition on too narrow…
CVE-2023-39351 — CVSS 5.3 (medium): FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. Affected versions of FreeRDP are…
CVE-2021-41160 — CVSS 5.3 (medium): FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. In affected versions a malicious…
CVE-2023-39352 — CVSS 5.3 (medium): FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. Affected versions are subject to…
CVE-2023-39353 — CVSS 5.3 (medium): FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. Affected versions are subject to…
CVE-2023-39356 — CVSS 5.3 (medium): FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. In affected versions a missing…
CVE-2023-40181 — CVSS 5.3 (medium): FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. Affected versions are subject to…
CVE-2023-40188 — CVSS 5.3 (medium): FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. Affected versions are subject to…
CVE-2023-40575 — CVSS 5.3 (medium): FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. Affected versions are subject to…
CVE-2023-40576 — CVSS 5.3 (medium): FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. Affected versions are subject to…
CVE-2022-39316 — CVSS 4.8 (medium): FreeRDP is a free remote desktop protocol library and clients. In affected versions there is an out of bound read in ZGFX decoder component…
CVE-2022-39318 — CVSS 4.8 (medium): FreeRDP is a free remote desktop protocol library and clients. Affected versions of FreeRDP are missing input validation in `urbdrc`…
CVE-2022-39317 — CVSS 4.6 (medium): FreeRDP is a free remote desktop protocol library and clients. Affected versions of FreeRDP are missing a range check for input offset…
CVE-2022-41877 — CVSS 4.6 (medium): FreeRDP is a free remote desktop protocol library and clients. Affected versions of FreeRDP are missing input length validation in `drive`…
CVE-2022-39319 — CVSS 4.6 (medium): FreeRDP is a free remote desktop protocol library and clients. Affected versions of FreeRDP are missing input length validation in the…
CVE-2023-40589 — CVSS 4.3 (medium): FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. In affected versions there is a…
CVE-2022-39282 — CVSS 3.5 (low): FreeRDP is a free remote desktop protocol library and clients. FreeRDP based clients on unix systems using `/parallel` command line switch…
CVE-2022-39347 — CVSS 2.6 (low): FreeRDP is a free remote desktop protocol library and clients. Affected versions of FreeRDP are missing path canonicalization and base path…