First published: Fri May 15 2020(Updated: )
Last updated 24 July 2024
Credit: cve@mitre.org cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
FreeRDP FreeRDP | >1.0.0<2.0.0 | |
FreeRDP FreeRDP | =2.0.0 | |
FreeRDP FreeRDP | =2.0.0-rc0 | |
FreeRDP FreeRDP | =2.0.0-rc1 | |
FreeRDP FreeRDP | =2.0.0-rc2 | |
FreeRDP FreeRDP | =2.0.0-rc3 | |
FreeRDP FreeRDP | =2.0.0-rc4 | |
Canonical Ubuntu Linux | =18.04 | |
Canonical Ubuntu Linux | =19.10 | |
Canonical Ubuntu Linux | =20.04 | |
openSUSE Leap | =15.1 | |
debian/freerdp2 | 2.3.0+dfsg1-2+deb11u1 2.10.0+dfsg1-1 2.11.7+dfsg1-6 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2020-11524 is a vulnerability in FreeRDP versions > 1.0 through 2.0.0-rc4 that allows for an out-of-bounds write.
CVE-2020-11524 affects FreeRDP versions > 1.0 through 2.0.0-rc4, potentially allowing attackers to perform out-of-bounds writes.
The severity of CVE-2020-11524 is not specified in the provided information.
To fix CVE-2020-11524, update FreeRDP to version 2.0.0-rc4 or later.
More information about CVE-2020-11524 can be found in the following references: [GitHub Advisory](https://github.com/FreeRDP/FreeRDP/security/advisories/GHSA-cgw8-3mp2-p5qw), [Publications Office of the European Union](https://pub.freerdp.com/cve/CVE-2020-11524/pocAnalysis_3.pdf), [FreeRDP GitHub Commits](https://github.com/FreeRDP/FreeRDP/commits/master).