CVE-2024-39917 in xrdpinfo

Zusammenfassung

von MITRE • 12.07.2024

xrdp is an open source RDP server. xrdp versions prior to 0.10.0 have a vulnerability that allows attackers to make an infinite number of login attempts. The number of max login attempts is supposed to be limited by a configuration parameter `MaxLoginRetry` in `/etc/xrdp/sesman.ini`. However, this mechanism was not effectively working. As a result, xrdp allows an infinite number of login attempts.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Zuständig

GitHub M

Reservieren

02.07.2024

Veröffentlichung

12.07.2024

Moderieren

akzeptiert

Eintrag

VDB-271378

CPE

bereit

EPSS

0.00602

KEV

nein

Aktivitäten

very low

Quellen

Might our Artificial Intelligence support you?

Check our Alexa App!