CVE-2022-39319 - FreeRDP Out-of-Bounds Read via urbdrc Channel — Full Exploit Analysis & Mitigation Guide
FreeRDP is a popular open source implementation of Microsoft’s Remote Desktop Protocol (RDP). Many Linux remote desktop tools and embedded systems use FreeRDP to
CVE-2022-39316 FreeRDP is a remote desktop protocol library and clients affected in versions out of bound read in ZGFX decoder component.
As per the FreeRDP team this issue in the server resulted in a fix in the client. Now all you need to do is upgrade
CVE-2022-39347 FreeRDP is a library and clients for remote desktop protocol. They're missing path canonicalization and base path checking for the `drive` channel.
If you use any of these redirection switches make sure that the files you share are outside the document root. When you share a file
CVE-2022-41914 Zulip is an open-source team collaboration tool
The issue is present only in Zulip 5.0 through 5.6. No other Zulip release is affected and Zulip is not vulnerable to this
CVE-2022-20922 - Breaking Down the SMB2 Snort Vulnerabilities in Cisco Products
CVE-2022-20922 is a critical vulnerability that targets Cisco products using the Snort 3 detection engine, specifically affecting how Server Message Block Version 2 (SMB2) traffic
Episode
00:00:00
00:00:00