Xrdp
CVE-2023-40184
MEDIUM
Severity by source
AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Primary rating from NVD · only source for this CVE.
CVSS VectorNVD
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Lifecycle Timeline
1DescriptionNVD
xrdp is an open source remote desktop protocol (RDP) server. In versions prior to 0.9.23 improper handling of session establishment errors allows bypassing OS-level session restrictions. The auth_start_session function can return non-zero (1) value on, e.g., PAM error which may result in in session restrictions such as max concurrent sessions per user by PAM (ex ./etc/security/limits.conf) to be bypassed. Users (administrators) don't use restrictions by PAM are not affected. This issue has been addressed in release version 0.9.23. Users are advised to upgrade. There are no known workarounds for this issue.
AnalysisAI
xrdp is an open source remote desktop protocol (RDP) server. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity.
Technical ContextAI
This vulnerability is classified under CWE-755. xrdp is an open source remote desktop protocol (RDP) server. In versions prior to 0.9.23 improper handling of session establishment errors allows bypassing OS-level session restrictions. The auth_start_session function can return non-zero (1) value on, e.g., PAM error which may result in in session restrictions such as max concurrent sessions per user by PAM (ex ./etc/security/limits.conf) to be bypassed. Users (administrators) don't use restrictions by PAM are not affected. This issue has been addressed in release version 0.9.23. Users are advised to upgrade. There are no known workarounds for this issue. Affected products include: Neutrinolabs Xrdp. Version information: prior to 0.9.23.
RemediationAI
A vendor patch is available. Apply the latest security update as soon as possible. Apply vendor patches when available. Implement network segmentation and monitoring as interim mitigations.
An issue was discovered in xrdp before 0.9.1. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploit
xrdp is an open source RDP server. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no au
xrdp is an open source project which provides a graphical login to remote machines using Microsoft Remote Desktop Protoc
xrdp is an open source project which provides a graphical login to remote machines using Microsoft Remote Desktop Protoc
xrdp is an open source project which provides a graphical login to remote machines using Microsoft Remote Desktop Protoc
xrdp is an open source project which provides a graphical login to remote machines using Microsoft Remote Desktop Protoc
xrdp is an open source project which provides a graphical login to remote machines using Microsoft Remote Desktop Protoc
xrdp is an open source project which provides a graphical login to remote machines using Microsoft Remote Desktop Protoc
xrdp open-source RDP server before v0.10.5 has an unauthenticated stack buffer overflow enabling remote code execution.
xrdp is an open source project which provides a graphical login to remote machines using Microsoft Remote Desktop Protoc
xrdp is an open source project which provides a graphical login to remote machines using Microsoft Remote Desktop Protoc
xrdp is an open source project which provides a graphical login to remote machines using Microsoft Remote Desktop Protoc
Same technique Authentication Bypass
View allShare
External POC / Exploit Code
Leaving vuln.today