Vulnerabilities > Freerdp > Freerdp > 1.2.0
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-05-12 | CVE-2020-11058 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products In FreeRDP after 1.1 and before 2.0.0, a stream out-of-bounds seek in rdp_read_font_capability_set could lead to a later out-of-bounds read. | 2.2 |
| 2020-05-07 | CVE-2020-11049 | Out-of-bounds Read vulnerability in multiple products In FreeRDP after 1.1 and before 2.0.0, there is an out-of-bound read of client memory that is then passed on to the protocol parser. | 2.2 |
| 2020-05-07 | CVE-2020-11048 | Out-of-bounds Read vulnerability in multiple products In FreeRDP after 1.0 and before 2.0.0, there is an out-of-bounds read. | 2.2 |
| 2020-05-07 | CVE-2020-11047 | Out-of-bounds Read vulnerability in multiple products In FreeRDP after 1.1 and before 2.0.0, there is an out-of-bounds read in autodetect_recv_bandwidth_measure_results. | 5.9 |
| 2020-05-07 | CVE-2020-11046 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in multiple products In FreeRDP after 1.0 and before 2.0.0, there is a stream out-of-bounds seek in update_read_synchronize that could lead to a later out-of-bounds read. | 2.2 |
| 2020-05-07 | CVE-2020-11045 | Out-of-bounds Read vulnerability in multiple products In FreeRDP after 1.0 and before 2.0.0, there is an out-of-bound read in in update_read_bitmap_data that allows client memory to be read to an image buffer. | 3.3 |
| 2020-05-07 | CVE-2020-11042 | Out-of-bounds Read vulnerability in multiple products In FreeRDP greater than 1.1 and before 2.0.0, there is an out-of-bounds read in update_read_icon_info. | 5.9 |
| 2018-12-20 | CVE-2018-1000852 | Out-of-bounds Read vulnerability in multiple products FreeRDP FreeRDP 2.0.0-rc3 released version before commit 205c612820dac644d665b5bb1cdf437dc5ca01e3 contains a Other/Unknown vulnerability in channels/drdynvc/client/drdynvc_main.c, drdynvc_process_capability_request that can result in The RDP server can read the client's memory.. | 6.5 |
| 2018-11-29 | CVE-2018-8789 | Out-of-bounds Read vulnerability in multiple products FreeRDP prior to version 2.0.0-rc4 contains several Out-Of-Bounds Reads in the NTLM Authentication module that results in a Denial of Service (segfault). | 5.0 |
| 2018-11-29 | CVE-2018-8788 | Out-of-bounds Write vulnerability in multiple products FreeRDP prior to version 2.0.0-rc4 contains an Out-Of-Bounds Write of up to 4 bytes in function nsc_rle_decode() that results in a memory corruption and possibly even a remote code execution. | 7.5 |