Skip to content
Toggle navigation
Sign up
Product
Actions
Automate any workflow
Packages
Host and manage packages
Security
Find and fix vulnerabilities
Codespaces
Instant dev environments
Copilot
Write better code with AI
Code review
Manage code changes
Issues
Plan and track work
Discussions
Collaborate outside of code
Explore
All features
Documentation
GitHub Skills
Blog
Solutions
For
Enterprise
Teams
Startups
Education
By Solution
CI/CD & Automation
DevOps
DevSecOps
Case Studies
Customer Stories
Resources
Open Source
GitHub Sponsors
Fund open source developers
The ReadME Project
GitHub community articles
Repositories
Topics
Trending
Collections
Pricing
In this repository
All GitHub
↵
Jump to
↵
No suggested jump to results
In this repository
All GitHub
↵
Jump to
↵
In this organization
All GitHub
↵
Jump to
↵
In this repository
All GitHub
↵
Jump to
↵
Sign in
Sign up
{{ message }}
neutrinolabs
/
xrdp
Public
Notifications
Fork
2.6k
Star
4.6k
Code
Issues
306
Pull requests
27
Discussions
Actions
Projects
1
Wiki
Security
Insights
More
Code
Issues
Pull requests
Discussions
Actions
Projects
Wiki
Security
Insights
Out-of-Bound Read in xrdp_caps_process_confirm_active
Low
metalefty
published
GHSA-hm75-9jcg-p7hq
Dec 9, 2022
Package
xrdp
(none)
Affected versions
<= 0.9.20
Patched versions
0.9.21
Description
xrdp < v0.9.21 contain a Out of Bound Read in xrdp_caps_process_confirm_active() function.
References
GHSA-hm75-9jcg-p7hq
Severity
Low
0.0
/ 10
CVSS base metrics
Attack vector
Network
Attack complexity
Low
Privileges required
None
User interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
None
Availability
None
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
CVE ID
CVE-2022-23481
Weaknesses
No CWEs
Credits
Team-BT5
Analyst
You can’t perform that action at this time.
You signed in with another tab or window.
Reload
to refresh your session.
You signed out in another tab or window.
Reload
to refresh your session.
xrdp < v0.9.21 contain a Out of Bound Read in xrdp_caps_process_confirm_active() function.
References