Lucene search
Veracode Vulnerability DatabaseVERACODE:27487HistoryOct 01, 2020 - 3:56 a.m.
Privilege Escalation
2020-10-0103:56:26
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
6
0.003 Low
EPSS
Percentile
68.5%
freerdp is vulnerable to privilege escalation. The vulnerability exists through an out-of-bounds read in ntlm_read_ntlm_v2_client_challenge function.
References
lists.opensuse.org/opensuse-security-announce/2020-07/msg00080.html
access.redhat.com/documentation/en-us/red_hat_enterprise_linux/7/html/7.9_release_notes/index
access.redhat.com/errata/RHSA-2020:4031
access.redhat.com/security/updates/classification/#moderate
github.com/FreeRDP/FreeRDP/commit/c098f21fdaadca57ff649eee1674f6cc321a2ec4
github.com/FreeRDP/FreeRDP/security/advisories/GHSA-fg8v-w34r-c974
Related
osv
osv
CVE-2020-11086
2020-05-29 20:15:10
Moderate: freerdp and vinagre security, bug fix, and enhancement update
2020-11-03 12:23:37
Moderate: freerdp and vinagre security, bug fix, and enhancement update
2020-11-03 12:23:37
cve
cve
CVE-2020-11086
2020-05-29 20:15:10
cvelist
cvelist
CVE-2020-11086 Out-of-bounds Read in FreeRDP `ntlm_read_ntlm_v2_response`
2020-05-29 00:00:00
redhatcve
redhatcve
CVE-2020-11086
2020-06-04 18:22:04
debiancve
debiancve
CVE-2020-11086
2020-05-29 20:15:10
ubuntucve
ubuntucve
CVE-2020-11086
2020-05-29 00:00:00
prion
prion
Design/Logic Flaw
2020-05-29 20:15:00
nvd
nvd
CVE-2020-11086
2020-05-29 20:15:10
openvas
openvas
FreeRDP < 2.1.0 Multiple Vulnerabilities
2020-06-15 00:00:00
Huawei EulerOS: Security Advisory for freerdp (EulerOS-SA-2022-1564)
2022-04-25 00:00:00
openSUSE: Security Advisory for freerdp (openSUSE-SU-2020:1090-1)
2020-07-27 00:00:00
nessus
nessus
EulerOS 2.0 SP8 : freerdp (EulerOS-SA-2022-1564)
2022-04-25 00:00:00
RHEL 7 : freerdp (RHSA-2020:4031)
2020-09-29 00:00:00
rocky
rocky
freerdp and vinagre security, bug fix, and enhancement update
2020-11-03 12:23:37
amazon
amazon
Medium: freerdp
2020-10-22 17:36:00
almalinux
almalinux
Moderate: freerdp and vinagre security, bug fix, and enhancement update
2020-11-03 12:23:37
oraclelinux
oraclelinux
freerdp security, bug fix, and enhancement update
2020-10-06 00:00:00
freerdp and vinagre security, bug fix, and enhancement update
2020-11-10 00:00:00
centos
centos
freerdp, libwinpr security update
2020-10-20 18:03:15
redhat
redhat
suse
suse
Security update for freerdp (important)
2020-07-26 00:00:00
mageia
mageia
Updated freerdp/remmina packages fix security vulnerability
2020-08-01 02:25:42
debian
debian
[SECURITY] [DLA 3606-1] freerdp2 security update
2023-10-07 18:09:17