Lucene search

CVE-2023-40589

🗓️ 31 Aug 2023 19:11:15Reported by GitHub_MType

FreeRDP Global-Buffer-Overflow in ncrush_decompress functio

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 58
Prion	Buffer overflow	31 Aug 202319:15	–	prion
OSV	CVE-2023-40589	31 Aug 202319:15	–	osv
OSV	UBUNTU-CVE-2023-40589	31 Aug 202319:15	–	osv
OSV	MGASA-2023-0318 Updated freerdp packages fix security vulnerabilities	15 Nov 202311:35	–	osv
OSV	USN-6401-1 freerdp2 vulnerabilities	4 Oct 202311:00	–	osv
OSV	RHSA-2024:2208 Red Hat Security Advisory: freerdp security update	16 Sep 202416:00	–	osv
OSV	ALSA-2024:2208 Moderate: freerdp security update	30 Apr 202400:00	–	osv
OSV	OPENSUSE-SU-2024:13504-1 freerdp-2.11.2-3.1 on GA media	15 Jun 202400:00	–	osv
OSV	SUSE-SU-2023:4893-1 Security update for freerdp	18 Dec 202315:34	–	osv
OSV	SUSE-SU-2023:4611-1 Security update for freerdp	29 Nov 202313:50	–	osv

Nvd

Vulners

Node

freerdp freerdpRange<2.11.0

freerdp freerdpMatch3.0.0beta1

freerdp freerdpMatch3.0.0beta2

Node

fedoraproject fedoraMatch37

fedoraproject fedoraMatch38

fedoraproject fedoraMatch39

Node

debian debian_linuxMatch10.0

[
  {
    "vendor": "FreeRDP",
    "product": "FreeRDP",
    "versions": [
      {
        "version": "< 2.11.0",
        "status": "affected"
      },
      {
        "version": ">= 3.0.0-beta1, < 3.0.0-beta3",
        "status": "affected"
      }
    ]
  }
]

Source	Link
github	www.github.com/FreeRDP/FreeRDP/security/advisories/GHSA-gc34-mw6m-g42x
lists	www.lists.fedoraproject.org/archives/list/[email protected]/message/A6LLDAPEXRDJOM3PREDDD267SSNT77DP/
lists	www.lists.fedoraproject.org/archives/list/[email protected]/message/OH2ATH2BKDNKCJAU4WPPXK4SHLE3UJUV/
github	www.github.com/FreeRDP/FreeRDP/commit/16141a30f983dd6f7a6e5b0356084171942c9416
lists	www.lists.debian.org/debian-lts-announce/2023/10/msg00008.html
lists	www.lists.fedoraproject.org/archives/list/[email protected]/message/IHMTGKCZXJPQOR5ZD2I4GPDNP2DKRXMF/
security	www.security.gentoo.org/glsa/202401-16

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

31 Aug 2023 19:15Current

6.9Medium risk

Vulners AI Score6.9

CVSS34.3 - 7.5

EPSS0.00109

CWE-120