Lowak

**Name of the Vulnerable Software and Affected Versions** FreeRDP versions prior to 3.5.1 **Description** The issue is related to an unbounded resource allocation in the FreeRDP client, which can be exploited by a remote attacker to cause a denial of service. A malicious server can crash the FreeRDP client by sending an invalid huge allocation size. **Recommendations** For versions prior to 3.5.1, update to version 3.5.1 to resolve the issue. As a temporary workaround, consider restricting access to the FreeRDP client until the update is applied.