Lucene search
GitHub_MCVELIST:CVE-2020-11085HistoryMay 29, 2020 - 12:00 a.m.
CVE-2020-11085 Out-of-bounds Read in FreeRDP
2020-05-2900:00:00
CWE-125
GitHub_M
www.cve.org
6
CVSS3
2.6
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:N/I:N/A:L
AI Score
5.5
Confidence
Low
EPSS
0.002
Percentile
52.0%
In FreeRDP before 2.1.0, there is an out-of-bounds read in cliprdr_read_format_list. Clipboard format data read (by client or server) might read data out-of-bounds. This has been fixed in 2.1.0.
CNA Affected
[
{
"vendor": "FreeRDP",
"product": "FreeRDP",
"versions": [
{
"version": "< 2.1.0",
"status": "affected"
}
]
}
]Related
veracode
veracode
Denial Of Service (DoS)
2020-10-01 03:56:26
osv
osv
CVE-2020-11085
2020-05-29 20:15:10
Moderate: freerdp and vinagre security, bug fix, and enhancement update
2020-11-03 12:23:37
Moderate: freerdp and vinagre security, bug fix, and enhancement update
2020-11-03 12:23:37
prion
prion
Out-of-bounds
2020-05-29 20:15:00
nvd
nvd
CVE-2020-11085
2020-05-29 20:15:10
debiancve
debiancve
CVE-2020-11085
2020-05-29 20:15:10
cve
cve
CVE-2020-11085
2020-05-29 20:15:10
ubuntucve
ubuntucve
CVE-2020-11085
2020-05-29 00:00:00
redhatcve
redhatcve
CVE-2020-11085
2020-06-04 18:22:04
openvas
openvas
FreeRDP < 2.1.0 Multiple Vulnerabilities
2020-06-15 00:00:00
openSUSE: Security Advisory for freerdp (openSUSE-SU-2020:1090-1)
2020-07-27 00:00:00
Mageia: Security Advisory (MGASA-2020-0297)
2022-01-28 00:00:00
oraclelinux
oraclelinux
freerdp security, bug fix, and enhancement update
2020-10-06 00:00:00
freerdp and vinagre security, bug fix, and enhancement update
2020-11-10 00:00:00
nessus
nessus
Oracle Linux 8 : freerdp / and / vinagre (ELSA-2020-4647)
2020-11-12 00:00:00
NewStart CGSL MAIN 6.02 : freerdp Multiple Vulnerabilities (NS-SA-2021-0083)
2021-03-10 00:00:00
Oracle Linux 7 : freerdp (ELSA-2020-4031)
2023-09-07 00:00:00
centos
centos
freerdp, libwinpr security update
2020-10-20 18:03:15
redhat
redhat
almalinux
almalinux
Moderate: freerdp and vinagre security, bug fix, and enhancement update
2020-11-03 12:23:37
amazon
amazon
Medium: freerdp
2020-10-22 17:36:00
rocky
rocky
freerdp and vinagre security, bug fix, and enhancement update
2020-11-03 12:23:37
suse
suse
Security update for freerdp (important)
2020-07-26 00:00:00
mageia
mageia
Updated freerdp/remmina packages fix security vulnerability
2020-08-01 02:25:42
debian
debian
[SECURITY] [DLA 3606-1] freerdp2 security update
2023-10-07 18:09:17
CVSS3
2.6
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
LOW
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:N/I:N/A:L
AI Score
5.5
Confidence
Low
EPSS
0.002
Percentile
52.0%
Related for CVELIST:CVE-2020-11085