Описание
In FreeRDP less than or equal to 2.0.0, when using a manipulated server with USB redirection enabled (nearly) arbitrary memory can be read and written due to integer overflows in length checks. This has been patched in 2.1.0.
Ссылки
- Third Party Advisory
- Third Party Advisory
- Mailing ListThird Party Advisory
- Third Party Advisory
- Third Party Advisory
- Mailing ListThird Party Advisory
Уязвимые конфигурации
EPSS
8 High
CVSS3
6.8 Medium
CVSS3
6 Medium
CVSS2
Дефекты
Связанные уязвимости
In FreeRDP less than or equal to 2.0.0, when using a manipulated server with USB redirection enabled (nearly) arbitrary memory can be read and written due to integer overflows in length checks. This has been patched in 2.1.0.
In FreeRDP less than or equal to 2.0.0, when using a manipulated server with USB redirection enabled (nearly) arbitrary memory can be read and written due to integer overflows in length checks. This has been patched in 2.1.0.
In FreeRDP less than or equal to 2.0.0, when using a manipulated serve ...
Уязвимость реализации протокола удалённого рабочего стола FreeRDP, вызванная целочисленным переполнением, позволяющая нарушителю оказать воздействие на конфиденциальность и целостность защищаемой информации
Moderate: freerdp and vinagre security, bug fix, and enhancement update
EPSS
8 High
CVSS3
6.8 Medium
CVSS3
6 Medium
CVSS2