Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

neutrinolabs — Vulnerabilities & Security Advisories 24

Browse all 24 CVE security advisories affecting neutrinolabs. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Neutrinolabs primarily develops network security and traffic analysis solutions, focusing on deep packet inspection and threat detection for enterprise environments. Historical vulnerability records indicate a pattern of remote code execution (RCE) and cross-site scripting (XSS) flaws, often stemming from inadequate input validation in web interfaces or command injection vulnerabilities in backend services. These issues frequently allow unauthenticated attackers to gain elevated privileges or execute arbitrary code on affected systems. While specific major public breaches are not widely documented in mainstream incident reports, the accumulation of 24 CVEs suggests persistent weaknesses in the software development lifecycle. The company’s products handle sensitive network data, making these security gaps particularly critical. Recent patches have addressed several high-severity entries, yet the recurring nature of these flaws highlights ongoing challenges in securing complex network monitoring tools against sophisticated exploitation attempts.

Top products by neutrinolabs: xrdp
CVE IDTitleCVSSSeverityPublished
CVE-2026-35512 xrdp: Heap buffer overflow in EGFX channel — xrdpCWE-122 9.8AICriticalAI2026-04-17
CVE-2026-33689 xrdp: Pre-authentication out-of-bounds reads in channel parsers — xrdpCWE-125 8.2AIHighAI2026-04-17
CVE-2026-33145 xrdp: Authenticated RCE via unsanitized AlternateShell execution in xrdp-sesman — xrdpCWE-78 6.3 Medium2026-04-17
CVE-2026-32624 xrdp: Heap buffer overflow in xrdp_sec_process_logon_info() via incorrect g_strncat length calculation — xrdpCWE-122 9.8AICriticalAI2026-04-17
CVE-2026-33516 xrdp: Pre-authentication out-of-bounds reads in RDP capability and channel parsers — xrdpCWE-125 9.1AICriticalAI2026-04-17
CVE-2026-32623 xrdp: Heap buffer overflow in NeutrinoRDP channel reassembly — xrdpCWE-122 8.1AIHighAI2026-04-17
CVE-2026-32105 xrdp: RDP MAC signature (dataSignature) never verified on receive — integrity bypass in non-TLS mode — xrdpCWE-354 5.9AIMediumAI2026-04-17
CVE-2026-32107 xrdp: Fail-open privilege drop in sesexec — child processes may execute as root if setuid fails — xrdpCWE-273 8.8 High2026-04-17
CVE-2025-68670 xrdp improperly checks bounds of domain string length, which leads to Stack-based Buffer Overflow — xrdpCWE-121 9.1 Critical2026-01-27
CVE-2024-39917 xrdp allows an ininite number of login attempts — xrdpCWE-307 7.2 High2024-07-12
CVE-2023-42822 Unchecked access to font glyph info in xrdp — xrdpCWE-125 4.6 Medium2023-09-27
CVE-2023-40184 Improper handling of session establishment errors in xrdp — xrdpCWE-755 2.6 Low2023-08-30
CVE-2022-23477 Buffer Overflow in xrdp — xrdpCWE-120 9.1 Critical2022-12-09
CVE-2022-23484 Integer Overflow in xrdp — xrdpCWE-190 8.2 High2022-12-09
CVE-2022-23483 Out-of-Bound Read in libxrdp — xrdpCWE-125 7.5 High2022-12-09
CVE-2022-23482 Out-of-Bound Read in xrdp — xrdpCWE-125--2022-12-09
CVE-2022-23481 Out-of-Bound Read in xrdp — xrdpCWE-125--2022-12-09
CVE-2022-23480 Buffer Overflow in xrdp — xrdpCWE-120 9.1 Critical2022-12-09
CVE-2022-23479 Buffer Overflow occurs in xrdp — xrdpCWE-120 9.1 Critical2022-12-09
CVE-2022-23478 Out of Bound Write in xrdp — xrdpCWE-787 9.1 Critical2022-12-09
CVE-2022-23468 Buffer Overflow in xrdp — xrdpCWE-120 6.5 Medium2022-12-09
CVE-2022-23493 Out of Bound Read in xrdp — xrdpCWE-125 9.1 Critical2022-12-09
CVE-2022-23613 Privilege escalation on xrdp — xrdpCWE-191 7.8 High2022-02-07
CVE-2020-4044 Local users can perform a buffer overflow attack against the xrdp-sesman service and then impersonate it — xrdpCWE-121 7.5 High2020-06-30

This page lists every published CVE security advisory associated with neutrinolabs. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.