Vulnerability DatabaseCVE-2022-23481
Mend.io Vulnerability Database
The largest open source vulnerability database
What is a Vulnerability ID?
New vulnerability? Tell us about it!
CVE-2022-23481
December 09, 2022
xrdp is an open source project which provides a graphical login to remote machines using Microsoft Remote Desktop Protocol (RDP). xrdp < v0.9.21 contain a Out of Bound Read in xrdp_caps_process_confirm_active() function. There are no known workarounds for this issue. Users are advised to upgrade.
Related Resources (6)
https://security-tracker.debian.org/tracker/CVE-2022-23481
https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/23xxx/CVE-2022-23481.json
https://www.debian.org/security/2023/dsa-5502
https://people.canonical.com/~ubuntu-security/cve/CVE-2022-23481
https://github.com/neutrinolabs/xrdp/security/advisories/GHSA-hm75-9jcg-p7hq
https://nvd.nist.gov/vuln/detail/CVE-2022-23481
Do you need more information?
Contact Us
Weakness Type (CWE)
Out-of-bounds Read
CWE-125
EPSS
Base Score:
0.15