CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-20180

rdesktop versions up to and including v1.8.3 contain an Integer Underflow that leads to a Heap-Based Buffer Overflow in the function rdpsnddbg_process() and results in memory corruption and probably even a remote code execution.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.16

EPSS Ranking 94.4%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 7.5

References

Products affected by CVE-2018-20180

Rdesktop » Rdesktop » Version: 1.2.0

cpe:2.3:a:rdesktop:rdesktop:1.2.0
Rdesktop » Rdesktop » Version: 1.3.0

cpe:2.3:a:rdesktop:rdesktop:1.3.0
Rdesktop » Rdesktop » Version: 1.3.1

cpe:2.3:a:rdesktop:rdesktop:1.3.1
Rdesktop » Rdesktop » Version: 1.4.0

cpe:2.3:a:rdesktop:rdesktop:1.4.0
Rdesktop » Rdesktop » Version: 1.4.1

cpe:2.3:a:rdesktop:rdesktop:1.4.1
Rdesktop » Rdesktop » Version: 1.5.0

cpe:2.3:a:rdesktop:rdesktop:1.5.0
Rdesktop » Rdesktop » Version: 1.6.0

cpe:2.3:a:rdesktop:rdesktop:1.6.0
Rdesktop » Rdesktop » Version: 1.7.0

cpe:2.3:a:rdesktop:rdesktop:1.7.0
Rdesktop » Rdesktop » Version: 1.7.1

cpe:2.3:a:rdesktop:rdesktop:1.7.1
Rdesktop » Rdesktop » Version: 1.8.0

cpe:2.3:a:rdesktop:rdesktop:1.8.0
Rdesktop » Rdesktop » Version: 1.8.1

cpe:2.3:a:rdesktop:rdesktop:1.8.1
Rdesktop » Rdesktop » Version: 1.8.2

cpe:2.3:a:rdesktop:rdesktop:1.8.2
Rdesktop » Rdesktop » Version: 1.8.3

cpe:2.3:a:rdesktop:rdesktop:1.8.3
Debian » Debian Linux » Version: 8.0

cpe:2.3:o:debian:debian_linux:8.0
Debian » Debian Linux » Version: 9.0

cpe:2.3:o:debian:debian_linux:9.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-20180

Products

Pricing

Contact Us