CVE-2020-4030
Description
In FreeRDP before version 2.1.2, there is an out of bounds read in TrioParse. Logging might bypass string length checks due to an integer overflow. This is fixed in version 2.1.2.
Risk Information
Base Score
6.5
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L
EPSS Score
Exploitation Probability
0.04
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| RDP client for Windows Terminal Services (USN-4481-1) libfreerdp2-2_2.2.0+dfsg1-0ubuntu0.18.04.1_i386.deb | Linux |
| RDP client for Windows Terminal Services (USN-4481-1) libfreerdp2-2_2.2.0+dfsg1-0ubuntu0.18.04.1_amd64.deb | Linux |
| RDP client for Windows Terminal Services (USN-4481-1) libfreerdp2-2_2.2.0+dfsg1-0ubuntu0.20.04.1_amd64.deb | Linux |
| RDP client for Windows Terminal Services (USN-4481-1) libfreerdp-client2-2_2.2.0+dfsg1-0ubuntu0.18.04.1_i386.deb | Linux |
| RDP client for Windows Terminal Services (USN-4481-1) libfreerdp-client2-2_2.2.0+dfsg1-0ubuntu0.18.04.1_amd64.deb | Linux |
| RDP client for Windows Terminal Services (USN-4481-1) libfreerdp-client2-2_2.2.0+dfsg1-0ubuntu0.20.04.1_amd64.deb | Linux |
| RDP client for Windows Terminal Services (USN-4481-1) libfreerdp-server2-2_2.2.0+dfsg1-0ubuntu0.18.04.1_i386.deb | Linux |
| RDP client for Windows Terminal Services (USN-4481-1) libfreerdp-server2-2_2.2.0+dfsg1-0ubuntu0.18.04.1_amd64.deb | Linux |
| RDP client for Windows Terminal Services (USN-4481-1) libfreerdp-server2-2_2.2.0+dfsg1-0ubuntu0.20.04.1_amd64.deb | Linux |
| (RHSA-2021:1849) freerdp security, bug fix, and enhancement update freerdp-2.2.0-1.el8.x86_64.rpm | Linux |
| (RHSA-2021:1849) freerdp security, bug fix, and enhancement update freerdp-debugsource-2.2.0-1.el8.i686.rpm | Linux |
| (RHSA-2021:1849) freerdp security, bug fix, and enhancement update freerdp-debugsource-2.2.0-1.el8.x86_64.rpm | Linux |
| (RHSA-2021:1849) freerdp security, bug fix, and enhancement update freerdp-libs-2.2.0-1.el8.i686.rpm | Linux |
| (RHSA-2021:1849) freerdp security, bug fix, and enhancement update freerdp-libs-2.2.0-1.el8.x86_64.rpm | Linux |
| (RHSA-2021:1849) freerdp security, bug fix, and enhancement update libwinpr-2.2.0-1.el8.i686.rpm | Linux |
| (RHSA-2021:1849) freerdp security, bug fix, and enhancement update libwinpr-2.2.0-1.el8.x86_64.rpm | Linux |
| (RHSA-2021:1849) freerdp security, bug fix, and enhancement update libwinpr-devel-2.2.0-1.el8.i686.rpm | Linux |
| (RHSA-2021:1849) freerdp security, bug fix, and enhancement update libwinpr-devel-2.2.0-1.el8.x86_64.rpm | Linux |
| RDP client for Windows Terminal Services (USN-4481-1) libfreerdp2-2_2.2.0+dfsg1-0ubuntu0.18.04.1_i386.deb | Linux |
| RDP client for Windows Terminal Services (USN-4481-1) libfreerdp2-2_2.2.0+dfsg1-0ubuntu0.18.04.1_amd64.deb | Linux |
| freerdp security, bug fix, and enhancement update (RLSA-2021:1849) libwinpr-devel-2.2.0-10.el8.x86_64.rpm | Linux |
| freerdp security, bug fix, and enhancement update (RLSA-2021:1849) libwinpr-devel-2.2.0-10.el8.i686.rpm | Linux |
| freerdp security, bug fix, and enhancement update (RLSA-2021:1849) libwinpr-2.2.0-10.el8.x86_64.rpm | Linux |
| freerdp security, bug fix, and enhancement update (RLSA-2021:1849) libwinpr-2.2.0-10.el8.i686.rpm | Linux |
| freerdp security, bug fix, and enhancement update (RLSA-2021:1849) freerdp-libs-2.2.0-10.el8.x86_64.rpm | Linux |
| freerdp security, bug fix, and enhancement update (RLSA-2021:1849) freerdp-libs-2.2.0-10.el8.i686.rpm | Linux |
| freerdp security, bug fix, and enhancement update (RLSA-2021:1849) freerdp-2.2.0-10.el8.x86_64.rpm | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234