CVE-2024-39917Improper Restriction of Excessive Authentication Attempts in Xrdp

CWE-307Improper Restriction of Excessive Authentication Attempts4 documents4 sources
Severity
9.8CRITICALNVD
CNA7.2
EPSS
0.2%
top 62.30%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Neutrinolabs Xrdp
Timeline
PublishedJul 12

Description

xrdp is an open source RDP server. xrdp versions prior to 0.10.0 have a vulnerability that allows attackers to make an infinite number of login attempts. The number of max login attempts is supposed to be limited by a configuration parameter `MaxLoginRetry` in `/etc/xrdp/sesman.ini`. However, this mechanism was not effectively working. As a result, xrdp allows an infinite number of login attempts.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages3 packages

NVDneutrinolabs/xrdp< 0.10.0
Debianneutrinolabs/xrdp< 0.9.21.1-1~deb11u2+3
CVEListV5neutrinolabs/xrdp0.10.0

Patches

Patch: github.comPatch: github.com

🔴Vulnerability Details

2
OSV
CVE-2024-39917: xrdp is an open source RDP server2024-07-12
CVEList
xrdp allows an ininite number of login attempts2024-07-12

📋Vendor Advisories

1
Debian
CVE-2024-39917: xrdp - xrdp is an open source RDP server. xrdp versions prior to 0.10.0 have a vulnerab...2024
CVE-2024-39917 — Neutrinolabs Xrdp vulnerability | cvebase