A vulnerability classified as critical was found in FreeRDP up to 2.11.5/3.4.x. Affected by this vulnerability is an unknown functionality of the component Legacy GDI Handler. The manipulation leads to out-of-bounds read.

This vulnerability is known as CVE-2024-32460. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.