CVE-2024-32460 | FreeRDP up to 2.11.5/3.4.x Legacy GDI out-of-bounds (GHSA-4rr8-gr65-vqrr)

Inserito da Angelo Barbosa | Apr 23, 2024 | CVE

A vulnerability classified as critical was found in FreeRDP up to 2.11.5/3.4.x. Affected by this vulnerability is an unknown functionality of the component Legacy GDI Handler. The manipulation leads to out-of-bounds read.

This vulnerability is known as CVE-2024-32460. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-32460 | FreeRDP up to 2.11.5/3.4.x Legacy GDI out-of-bounds (GHSA-4rr8-gr65-vqrr)

Post correlati

CVE-2024-36827 | ebookmeta up to 1.2.7 XML ebookmeta.get_metadata xml external entity reference (Issue 16)

CVE-2023-52656 | Linux Kernel up to 5.4.272/5.10.213/5.15.152/6.1.82/6.7.10 io_uring Privilege Escalation

CVE-2024-39296 | Linux Kernel up to 6.6.33/6.9.4 bonding_masters bonding_exit missing initialization (f07224c16678/cf48aee81103/a45835a0bb6e)

CVE-2024-28001 | Archetyped Favicon Rotator Plugin up to 1.2.10 on WordPress cross site scripting