CRITICAL🇵🇱 Wersja polska

CVE-2024-32041

CVSS 9.8v3.1pub. 2024-04-22upd. 2025-02-04

FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients that use a version of FreeRDP prior to 3.5.0 or 2.11.6 are vulnerable to out-of-bounds read. Versions 3.5.0 and 2.11.6 patch the issue. As a workaround, deactivate `/gfx` (on by default, set `/bpp` or `/rfx` options instead.

🤖 AI Analysis
How it works

The vulnerability (CWE-125 — out-of-bounds read) occurs in the remote desktop graphics handling component (GFX, enabled by default). An attacker can deliver specially crafted data over the network, causing memory to be read outside the allowed buffer range. The lack of authentication or user interaction requirements makes the attack particularly easy to perform.

Impact

An attacker can obtain unauthorized access to sensitive data in process memory, and in extreme cases lead to compromise of integrity or availability of the client system.

Mitigation & patch

FreeRDP should be updated to version 3.5.0 or 2.11.6. As a temporary workaround, you can disable the `/gfx` option (enabled by default) and use `/bpp` or `/rfx` option instead.

Who is affected

FreeRDP-based clients in versions prior to 3.5.0 and 2.11.6, as well as FreeRDP packages provided in Fedora distributions (versions indicated in vendor references).

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Fedora Project Fedora

    OS
    Fedoraproject
    383940
  • Freerdp

    APP
    Freerdp
    < 2.11.63.0.0 – 3.5.0 (bez)
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
Tags
Memory
CWE
References

Related vulnerabilities

CVE-2024-4577CRITICAL9.8⚠ KEVPL ✓ten sam produkt

PHP CGI argument injection – RCE na Windows przez mechanizm Best-Fit

CVE-2024-5274CRITICAL9.6⚠ KEVPL ✓ten sam produkt

Type Confusion w V8 (Google Chrome) — RCE przez spreparowaną stronę HTML

CVE-2024-4947CRITICAL9.6⚠ KEVPL ✓ten sam produkt

Type Confusion w silniku V8 Chrome — zdalne wykonanie kodu (RCE)

CVE-2024-4671CRITICAL9.6⚠ KEVPL ✓ten sam produkt

Use-after-free w Google Chrome Visuals umożliwiający ucieczkę z sandbox

CVE-2023-6345CRITICAL9.6⚠ KEVPL ✓ten sam produkt

Integer overflow w Skia w Google Chrome — sandbox escape