Show filters
255 Total Results
Displaying 151-160 of 255
Sort by:
Attacker Value
Unknown
CVE-2021-41159
Disclosure Date: October 21, 2021 (last updated November 08, 2023)
FreeRDP is a free implementation of the Remote Desktop Protocol (RDP), released under the Apache license. All FreeRDP clients prior to version 2.4.1 using gateway connections (`/gt:rpc`) fail to validate input data. A malicious gateway might allow client memory to be written out of bounds. This issue has been resolved in version 2.4.1. If you are unable to update then use `/gt:http` rather than /gt:rdp connections if possible or use a direct connection without a gateway.
0
Attacker Value
Unknown
CVE-2021-42098
Disclosure Date: October 18, 2021 (last updated October 07, 2023)
An incomplete permission check on entries in Devolutions Remote Desktop Manager before 2021.2.16 allows attackers to bypass permissions via batch custom PowerShell.
0
Attacker Value
Unknown
CVE-2021-34535
Disclosure Date: August 12, 2021 (last updated December 29, 2023)
Remote Desktop Client Remote Code Execution Vulnerability
0
Attacker Value
Unknown
CVE-2021-31968
Disclosure Date: June 08, 2021 (last updated October 07, 2023)
Windows Remote Desktop Services Denial of Service Vulnerability
0
Attacker Value
Unknown
CVE-2021-21988
Disclosure Date: May 24, 2021 (last updated October 07, 2023)
VMware Workstation (16.x prior to 16.1.2) and Horizon Client for Windows (5.x prior to 5.5.2) contain out-of-bounds read vulnerability in the Cortado ThinPrint component (JPEG2000 Parser). A malicious actor with access to a virtual machine or remote desktop may be able to exploit these issues leading to information disclosure from the TPView process running on the system where Workstation or Horizon Client for Windows is installed.
0
Attacker Value
Unknown
CVE-2021-21987
Disclosure Date: May 24, 2021 (last updated October 07, 2023)
VMware Workstation (16.x prior to 16.1.2) and Horizon Client for Windows (5.x prior to 5.5.2) contain out-of-bounds read vulnerability in the Cortado ThinPrint component (TTC Parser). A malicious actor with access to a virtual machine or remote desktop may be able to exploit these issues leading to information disclosure from the TPView process running on the system where Workstation or Horizon Client for Windows is installed.
0
Attacker Value
Unknown
CVE-2021-21989
Disclosure Date: May 24, 2021 (last updated October 07, 2023)
VMware Workstation (16.x prior to 16.1.2) and Horizon Client for Windows (5.x prior to 5.5.2) contain out-of-bounds read vulnerability in the Cortado ThinPrint component (TTC Parser). A malicious actor with access to a virtual machine or remote desktop may be able to exploit these issues leading to information disclosure from the TPView process running on the system where Workstation or Horizon Client for Windows is installed.
0
Attacker Value
Unknown
CVE-2021-31186
Disclosure Date: May 11, 2021 (last updated October 07, 2023)
Windows Remote Desktop Protocol (RDP) Information Disclosure Vulnerability
0
Attacker Value
Unknown
CVE-2021-23922
Disclosure Date: April 01, 2021 (last updated October 07, 2023)
An issue was discovered in Devolutions Remote Desktop Manager before 2020.2.12. There is a cross-site scripting (XSS) vulnerability in webviews.
0
Attacker Value
Unknown
CVE-2021-28047
Disclosure Date: April 01, 2021 (last updated October 07, 2023)
Cross-Site Scripting (XSS) in Administrative Reports in Devolutions Remote Desktop Manager before 2021.1 allows remote authenticated users to inject arbitrary web script or HTML via multiple input fields.
0