Vulnerabilities > Freerdp > Medium

DATE CVE VULNERABILITY TITLE RISK
2020-05-29 CVE-2020-11038 Integer Overflow to Buffer Overflow vulnerability in multiple products
In FreeRDP less than or equal to 2.0.0, an Integer Overflow to Buffer Overflow exists.
network
low complexity
freerdp opensuse debian CWE-680
5.4
5.4
2020-05-29 CVE-2020-11019 Out-of-bounds Read vulnerability in multiple products
In FreeRDP less than or equal to 2.0.0, when running with logger set to "WLOG_TRACE", a possible crash of application could occur due to a read of an invalid array index.
network
low complexity
freerdp opensuse debian CWE-125
6.5
6.5
2020-05-29 CVE-2020-11018 Out-of-bounds Read vulnerability in multiple products
In FreeRDP less than or equal to 2.0.0, a possible resource exhaustion vulnerability can be performed.
network
low complexity
freerdp opensuse debian CWE-125
6.5
6.5
2020-05-29 CVE-2020-11017 Double Free vulnerability in multiple products
In FreeRDP less than or equal to 2.0.0, by providing manipulated input a malicious client can create a double free condition and crash the server.
network
low complexity
freerdp opensuse debian CWE-415
6.5
6.5
2020-05-22 CVE-2020-13397 Out-of-bounds Read vulnerability in multiple products
An issue was discovered in FreeRDP before 2.1.1.
local
low complexity
freerdp debian opensuse canonical CWE-125
5.5
5.5
2020-05-15 CVE-2020-11524 Out-of-bounds Write vulnerability in multiple products
libfreerdp/codec/interleaved.c in FreeRDP versions > 1.0 through 2.0.0-rc4 has an Out-of-bounds Write. 		6.0
6.0
2020-05-15 CVE-2020-11523 Integer Overflow or Wraparound vulnerability in multiple products
libfreerdp/gdi/region.c in FreeRDP versions > 1.0 through 2.0.0-rc4 has an Integer Overflow. 		6.0
6.0
2020-05-15 CVE-2020-11522 Out-of-bounds Read vulnerability in multiple products
libfreerdp/gdi/gdi.c in FreeRDP > 1.0 through 2.0.0-rc4 has an Out-of-bounds Read.
network
low complexity
freerdp debian canonical opensuse CWE-125
6.4
6.4
2020-05-15 CVE-2020-11521 Integer Overflow or Wraparound vulnerability in multiple products
libfreerdp/codec/planar.c in FreeRDP version > 1.0 through 2.0.0-rc4 has an Out-of-bounds Write. 		6.0
6.0
2020-05-07 CVE-2020-11047 Out-of-bounds Read vulnerability in multiple products
In FreeRDP after 1.1 and before 2.0.0, there is an out-of-bounds read in autodetect_recv_bandwidth_measure_results.
network
high complexity
freerdp canonical debian CWE-125
5.9
5.9