CVE-2022-39347 FreeRDP is a library and clients for remote desktop protocol. They're missing path canonicalization and base path checking for the `drive` channel.
If you use any of these redirection switches make sure that the files you share are outside the document root. When you share a file
CVE-2022-39316 FreeRDP is a remote desktop protocol library and clients affected in versions out of bound read in ZGFX decoder component.
As per the FreeRDP team this issue in the server resulted in a fix in the client. Now all you need to do is upgrade
CVE-2022-4012 - Critical SQL Injection in Hospital Management Center (patient-info.php pt_id Exploit)
The cybersecurity world is constantly finding vulnerabilities, but sometimes one stands out for its simplicity and potential impact. CVE-2022-4012 is one of these dangerous flaws.
CVE-2022-29278 - How Faulty Pointer Checks in NvmExpressDxe Risk Both SMRAM and OS Memory
In this post, we’ll look closely at CVE-2022-29278, a significant firmware-level security hole discovered in the NvmExpressDxe driver. The flaw can potentially let attackers
CVE-2022-3377 - Analyzing the FNT File Vulnerability in Horner Automation’s Cscape (RCE Risk Inside)
Horner Automation’s Cscape is an automation software suite commonly used for programming and configuring controllers in industrial environments. In late 2022, a significant vulnerability
Episode
00:00:00
00:00:00