Out-Of-Bounds Read in FreeRDP
CVE-2023-40576

5.3MEDIUM

Key Information:

Vendor: Freerdp
Status: Freerdp
Vendor: CVE Published:; 31 August 2023

What is CVE-2023-40576?

The FreeRDP remote desktop client is vulnerable to an Out-Of-Bounds Read in the RleDecompress function due to inadequate length verification of the pbSrcBuffer variable. This flaw may result in unexpected errors or crashes when insufficient data is present. Users are strongly urged to upgrade to version 3.0.0-beta3, as previous versions are susceptible to this issue. There are no known workarounds available.

Affected Version(s)

FreeRDP >= 3.0.0-beta1, < 3.0.0-beta3

References

https://github.com/FreeRDP/FreeRDP/security/advisories/GH...

x_refsource_CONFIRM

https://github.com/FreeRDP/FreeRDP/blob/5be5553e0da72178a...

x_refsource_MISC

https://security.gentoo.org/glsa/202401-16

CVSS V3.1

Score:

5.3

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Aug 31, 2023
Vulnerability Reserved
Aug 16, 2023

Freerdp

What is CVE-2023-40576?

Affected Version(s)

References

CVSS V3.1

Timeline