CVE-2020-11049

CVSS v3.1

5.5

Medium

Vector

AV:N/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:L

Name of the Vulnerable Software and Affected Versions FreeRDP versions 1.1 through 1.9

Description The issue involves an out-of-bound read of client memory that is then passed on to the protocol parser. This has been patched in version 2.0.0.

Recommendations For versions 1.1 through 1.9, update to version 2.0.0 to resolve the issue.

Exploit

Fix

Out of bounds Read

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-125

Related Identifiers

ALSA-2020:4647

CESA-2020_4031

CESA-2020_4647

CVE-2020-11049

DLA-3606-1

GHSA-WWH7-R2R8-XJPR

MGASA-2020-0297

RHSA-2020:4031

RHSA-2020:4647

RHSA-2020_4031

RHSA-2020_4647

RLSA-2020:4647

USN-4379-1

USN-4382-1

Affected Products

Almalinux

Centos

Freerdp

Linuxmint

Red Hat

Rocky Linux

Ubuntu

CVE-2020-11049

Weakness Enumeration

Related Identifiers

Affected Products

References · 139