CVE-2024-32460 | FreeRDP up to 2.11.5/3.4.x Legacy GDI out-of-bounds (GHSA-4rr8-gr65-vqrr)

Inserito da Angelo Barbosa | Apr 23, 2024 | CVE

A vulnerability classified as critical was found in FreeRDP up to 2.11.5/3.4.x. Affected by this vulnerability is an unknown functionality of the component Legacy GDI Handler. The manipulation leads to out-of-bounds read.

This vulnerability is known as CVE-2024-32460. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-32460 | FreeRDP up to 2.11.5/3.4.x Legacy GDI out-of-bounds (GHSA-4rr8-gr65-vqrr)

Post correlati

CVE-2023-51613 | D-Link DIR-X3260 prog.cgi SetDynamicDNSSettings stack-based overflow

CVE-2023-48624 | Adobe Experience Manager AEM Cloud Service/6.5.18.0 cross site scripting (APSB23-72)

CVE-2024-4801 | Kashipara College Management System 1.0 submit_new_faculty.php address sql injection

CVE-2024-51506 | Tiki up to 27.0 Create a Wiki Pages description cross site scripting