FreeRDP is a free implementation of the Remote Desktop Protocol. FreeRDP based clients that use a version of FreeRDP prior to 3.5.0 or 2.11.6 and have connections to servers using the `NSC` codec are vulnerable to integer underflow. Versions 3.5.0 and 2.11.6 patch the issue. As a workaround, do not use the NSC codec (e.g. use `-nsc`).
References
Configurations
No configuration.
History
10 Jun 2024, 18:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
10 Jun 2024, 17:16
Type | Values Removed | Values Added |
---|---|---|
References |
|
23 Apr 2024, 12:52
Type | Values Removed | Values Added |
---|---|---|
Summary |
|
22 Apr 2024, 21:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2024-04-22 21:15
Updated : 2024-06-10 18:15
NVD link : CVE-2024-32040
Mitre link : CVE-2024-32040
CVE.ORG link : CVE-2024-32040
JSON object : View
Products Affected
No product.
CWE
CWE-191
Integer Underflow (Wrap or Wraparound)